2 matches found
CVE-2017-9637
CVE-2017-9637 affects Schneider Electric Ampla MES 6.4 and earlier. The vulnerability allows sniffing of the connection string when third-party database connectivity uses SQL credentials (cleartext transmission of sensitive information). Root cause is transmission of credentials in cleartext; Win...
Schneider Electric Ampla MES
CVSS v3 6.7 ATTENTION: Low skill level to exploit. Vendor: Schneider Electric Equipment: Ampla MES Vulnerabilities: Cleartext Transmission of Sensitive Information, Inadequate Encryption Strength AFFECTED PRODUCTS Schneider Electric reports that the vulnerability affects the following Ampla...