Vulnerability Description
TURCK BL20 Programmable Gateway and BL67 Programmable Gateway have hardcoded accounts, which allows remote attackers to obtain administrative access via an FTP session.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Turck | Bl20 Programmable Gateway | - |
| Turck | Bl67 Programmable Gateway | - |
| Turck | Bl20 Programmable Gateway Firmware | - |
| Turck | Bl67 Programmable Gateway Firmware | - |
Related Weaknesses (CWE)
References
- http://ics-cert.us-cert.gov/advisories/ICSA-13-136-01US Government Resource
- http://ics-cert.us-cert.gov/advisories/ICSA-13-136-01US Government Resource
FAQ
What is CVE-2012-4697?
CVE-2012-4697 is a vulnerability with a CVSS score of 10.0 (HIGH). TURCK BL20 Programmable Gateway and BL67 Programmable Gateway have hardcoded accounts, which allows remote attackers to obtain administrative access via an FTP session.
How severe is CVE-2012-4697?
CVE-2012-4697 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4697?
Check the references section above for vendor advisories and patch information. Affected products include: Turck Bl20 Programmable Gateway, Turck Bl67 Programmable Gateway, Turck Bl20 Programmable Gateway Firmware, Turck Bl67 Programmable Gateway Firmware.