CVE-2019-11369
Carel pCOWeb devices before B1.2.4 store cleartext passwords in /config/pw_changeusers.html, enabling local disclosure of sensitive credentials to someone with device access. The vulnerability is documented across multiple sources (NVD and Red Hat CVE pages) with high impact on confidentiality an...