CVE-2012-6428

Summary

The Carlo Gavazzi EOS-Box

stores hard-coded passwords in the PHP file of the device. By using the hard-coded passwords, attackers can log into the device with administrative privileges. This could allow the attacker to have unauthorized access.

Affected Software

VendorProductVersion RangeStatus
Carlo Gavazzi AutomationEOS-Box0 < 1.0.0.1080_2.1.10affected

Weaknesses

  • CWE-798: CWE-798

ADP Enrichment

CVE Program Container

Additional References

References