CVE-2014-2717
CVE-2014-2717 affects Honeywell FALCON XLWeb controllers (Linux: 2.04.01 and earlier; XLWebExe: 2.02.11 and earlier). The vulnerability allows remote attackers to bypass authentication and obtain administrative access by visiting the change-password page. NVD lists a CVSS v2 base score of 7.6 (AV...