CVE-2015-2867

Summary

A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 service allows remote attackers to take complete control of the system.

Affected Software

VendorProductVersion RangeStatus
TraneComfortLink II SCC firmware2.0.2affected

Weaknesses

  • hardcoded passwords

ADP Enrichment

CVE Program Container

Additional References

References