Vulnerability CVE-2023-29103

Vulnerability CVE-2023-29103

Published: 2023-05-09

Description:

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC712 (All versions < V2.1), SIMATIC Cloud Connect 7 CC716 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC716 (All versions < V2.1). The affected device uses a hard-coded password to protect the diagnostic files. This could allow an authenticated attacker to access protected data.

Type:

CWE-259

(Use of Hard-coded Password)

References:

https://cert-portal.siemens.com/productcert/pdf/ssa-555292.pdf

Copyright 2024, cxsecurity.com