CVE-2014-2380

Summary

Schneider Electric Wonderware Information Server (WIS) Portal 4.0 SP1 through 5.5 uses weak encryption, which allows remote attackers to obtain sensitive information by reading a credential file.

Affected Software

VendorProductVersion RangeStatus
Schneider ElectricWonderware Information Server Portal4.0 SP1affected
Schneider ElectricWonderware Information Server Portal4.5affected
Schneider ElectricWonderware Information Server Portal5.0affected
Schneider ElectricWonderware Information Server Portal5.5affected

Weaknesses

  • CWE-326: CWE-326

ADP Enrichment

CVE Program Container

Additional References

References