CVE-2014-2350
N/A
N/A
Summary
Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3 uses hardcoded credentials for diagnostic services, which allows remote attackers to bypass intended access restrictions via a TCP session, as demonstrated by a session that uses the telnet program.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Emerson | DeltaV | 10.3.1 | affected |
| Emerson | DeltaV | 11.3 | affected |
| Emerson | DeltaV | 11.3.1 | affected |
| Emerson | DeltaV | 12.3 | affected |
Weaknesses
- CWE-798: CWE-798
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.