CVE-2022-32249

Under special integration scenario of SAP Business one and SAP HANA - version 10.0, an attacker can exploit HANA cockpit�s data volume to gain access to highly sensitive information e.g., high privileged account credentials...

CVE-2017-9957

A vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which the web service contains a hidden system account with a hardcoded password. An attacker can use this information to log into the system with high-privilege credentials...

Hardcoded credentials

A vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which the web service contains a hidden system account with a hardcoded password. An attacker can use this information to log into the system with high-privilege credentials...

CVE-2017-9957

Schneider Electric’s U.motion Builder software (versions 1.2.1 and prior) contains a web service with a hidden system account that has a hardcoded password. This allows an attacker to authenticate with high-privilege credentials and compromise the system. Remediation: firmware update to Version 1...

(0Day) Schneider Electric U.motion Builder Hard-Coded Password Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Schneider Electric U.motion Builder. The specific flaw exists within the configuration of the product. The web service comes with a hidden system account with a hard-coded password. An attacker can...