CVE-2015-3974 Information

Description

EasyIO EasyIO-30P-SF controllers with firmware before 0.5.21 and 2.x before 2.0.5.21 as used in Accutrol Bar-Tech Automation Infocon/EasyIO Honeywell Automation India Johnson Controls SyxthSENSE Transformative Wave Technologies Tridium Asia Pacific and Tridium Europe products have a hardcoded password which makes it easier for remote attackers to obtain access via unspecified vectors.

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-15-237-02