CVE-2016-9360

Summary

An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian Version 6.0 and prior versions. An attacker may be able to retrieve user passwords if he or she has access to an authenticated session.

Affected Software

VendorProductVersion RangeStatus
n/aGE Proficy HMI/SCADA iFIX, Proficy HMI/SCADA CIMPLICITY, and Proficy HistorianGE Proficy HMI/SCADA iFIX, Proficy HMI/SCADA CIMPLICITY, and Proficy Historianaffected

Weaknesses

  • GE Proficy HMI/SCADA iFIX, Proficy HMI/SCADA CIMPLICITY, and Proficy Historian retrieve user passwords

ADP Enrichment

CVE Program Container

Additional References

References