Security misconfiguration in Schneider Electric IGSS Mobile app v3.01 and earlier; lacks certificate pinning, enabling man-in-the-middle attac
Reporter | Title | Published | Views | Family All 4 |
---|---|---|---|---|
![]() | CVE-2017-9968 | 12 Feb 201823:00 | – | cvelist |
![]() | Security feature bypass | 12 Feb 201823:29 | – | prion |
![]() | CVE-2017-9968 | 12 Feb 201823:29 | – | cve |
![]() | Schneider Electric IGSS Mobile | 15 Feb 201812:00 | – | ics |
Source | Link |
---|---|
securityfocus | www.securityfocus.com/bid/103048 |
schneider-electric | www.schneider-electric.com/en/download/document/SEVD-2018-039-02/ |
ics-cert | www.ics-cert.us-cert.gov/advisories/ICSA-18-046-03 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo