4 matches found
CVE-2021-22702
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 see notification for affected versions, that could cause disclosure of user credentials when a malicious actor...
CVE-2021-22702
CVE-2021-22702 affects Schneider Electric PowerLogic devices (ION7400/7650/7700-73xx/83xx-84xx-85xx/8600, ION8650, ION8800, ION9000 and PM800). Root cause: cleartext transmission of sensitive information via Telnet, exposing credentials if an attacker eavesdrops network traffic. Documented impact...
Stack overflow
Unisys Libra 64xx and 84xx and FS601 class systems with MCP-FIRMWARE before 43.211 allow remote authenticated users to cause a denial of service program crash or have unspecified other impact via vectors related to incorrect literal handling, which trigger CPM stack corruption...
CVE-2017-13684
CVE-2017-13684 affects Unisys Libra 64xx/84xx and FS601 class systems with MCP-Firmware prior to 43.211. The issue stems from incorrect literal handling that can trigger CPM stack corruption, enabling remote authenticated users to cause a program crash or produce unspecified impact. The available...