CVE-2016-9368

Summary

An issue was discovered in Eaton xComfort Ethernet Communication Interface (ECI) Versions 1.07 and prior. By accessing a specific uniform resource locator (URL) on the webserver, a malicious user may be able to access files without authenticating.

Affected Software

VendorProductVersion RangeStatus
n/aEaton xComfort Ethernet Communication InterfaceEaton xComfort Ethernet Communication Interfaceaffected

Weaknesses

  • CWE-284: CWE-284

ADP Enrichment

CVE Program Container

Additional References

References