Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SCADA_CLEARSCADA_REMOTE_SECURITY_BYPASS.NBIN
HistoryJan 05, 2015 - 12:00 a.m.

StruxureWare SCADA Expert ClearSCADA Remote Security Bypass

2015-01-0500:00:00
This script is Copyright (C) 2015-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
JSON

The remote web server is a version of StruxureWare SCADA Expert ClearSCADA (formerly Schneider Electric ClearSCADA) prior to version 2010 R3.2 / 2014 R1.1, or a version of 2013 R1 to 2013 R2.1. It is, therefore, affected by an authentication bypass vulnerability due to the default guest account not being restricted.

Binary data scada_clearscada_remote_security_bypass.nbin
VendorProductVersionCPE
schneider-electricclearscadacpe:/a:schneider-electric:clearscada
schneider-electricscada_expert_clearscadacpe:/a:schneider-electric:scada_expert_clearscada
JSON