5 matches found
CVE-2025-1960
CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could cause an attacker to execute unauthorized commands when a system’s default password credentials have not been changed on first use. The default username is not displayed correctly in the WebHMI interfa...
CVE-2025-1960
CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could cause an attacker to execute unauthorized commands when a system’s default password credentials have not been changed on first use. The default username is not displayed correctly in the WebHMI interfa...
CVE-2025-1960
creationtimestamp| type| source ---|---|--- 2025-03-12 15:40:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7320 2025-03-12 16:40:24+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lk6zie2nfz2o 2025-03-12 17:48:29+00:00| seen|...
CVE-2025-1960
CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could cause an attacker to execute unauthorized commands when a system’s default password credentials have not been changed on first use. The default username is not displayed correctly in the WebHMI interfa...
CVE-2025-1960
CVE-2025-1960 affects Schneider Electric WebHMI (EcoStruxure Power Automation System User Interface) used in EMO-L/EPAS deployments. The root cause is CWE-1188: Initialization of a Resource with an Insecure Default, where insecure default values during resource initialization could allow an attac...