A vulnerability has been identified in Siemens APOGEE PXC and TALON TC BACnet Automation Controllers in all versions <V3.5. An attacker with network access to the integrated web server (80/tcp and 443/tcp) could bypass the authentication and download sensitive information from the device.
CPE | Name | Operator | Version |
---|---|---|---|
apogee_pxc_firmware | lt | 3.5 | |
apogee_pxc_modular_firmware | lt | 3.5 | |
talon_tc_compact_firmware | lt | 3.5 | |
talon_tc_modular_firmware | lt | 3.5 |