CVE-2015-7911 Information

Description

Saia Burgess PCD1.M0xx0 PCD1.M2xx0 PCD2.M5xx0 PCD3.Mxx60 PCD3.Mxxx0 PCD7.D4xxD PCD7.D4xxV PCD7.D4xxWTPF and PCD7.D4xxxT5F devices before 1.24.50 and PCD3.T665 and PCD3.T666 devices before 1.24.41 have hardcoded credentials which allows remote attackers to obtain administrative access via an FTP session.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-15-335-01

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

NONE

Base Severity

9.1