CVE-2018-10612
N/A
N/A
Summary
In 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior to version 3.5.14.0, user access management and communication encryption is not enabled by default, which could allow an attacker access to the device and sensitive information, including user credentials.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| 3S-Smart | 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior to version 3.5.14.0 | 3S-Smart Software Solutions GmbH CODESYS Control V3 products prior to version 3.5.14.0 | affected |
Weaknesses
- CWE-284: IMPROPER ACCESS CONTROL CWE-284
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.