A vulnerability has been identified in Siemens APOGEE PXC and TALON TC BACnet Automation Controllers in all versions <V3.5. An attacker with network access to the integrated web server (80/tcp and 443/tcp) could bypass the authentication and download sensitive information from the device.
File data ot_500107.nasl
Vendor | Product | Version | CPE |
---|---|---|---|
siemens | apogee_pxc_bacnet_automation_controller_firmware | * | cpe:2.3:o:siemens:apogee_pxc_bacnet_automation_controller_firmware:*:*:*:*:*:*:*:* |
siemens | apogee_pxc_bacnet_automation_controller | - | cpe:2.3:h:siemens:apogee_pxc_bacnet_automation_controller:-:*:*:*:*:*:*:* |
siemens | talon_tc_bacnet_automation_controller_firmware | * | cpe:2.3:o:siemens:talon_tc_bacnet_automation_controller_firmware:*:*:*:*:*:*:*:* |
siemens | talon_tc_bacnet_automation_controller | - | cpe:2.3:h:siemens:talon_tc_bacnet_automation_controller:-:*:*:*:*:*:*:* |