Vulnerability Description
An Insufficiently Protected Credentials issue was discovered in Schneider Electric Modicon PLCs Modicon M241, all firmware versions, and Modicon M251, all firmware versions. Log-in credentials are sent over the network with Base64 encoding leaving them susceptible to sniffing. Sniffed credentials could then be used to log into the web application.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schneider-Electric | Modicon M241 Firmware | <= 4.0.3.20 |
| Schneider-Electric | Modicon M241 | - |
| Schneider-Electric | Modicon M251 Firmware | <= 4.0.3.20 |
| Schneider-Electric | Modicon M251 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/97254Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/97254Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-089-02Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2017-6028?
CVE-2017-6028 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An Insufficiently Protected Credentials issue was discovered in Schneider Electric Modicon PLCs Modicon M241, all firmware versions, and Modicon M251, all firmware versions. Log-in credentials are sen...
How severe is CVE-2017-6028?
CVE-2017-6028 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-6028?
Check the references section above for vendor advisories and patch information. Affected products include: Schneider-Electric Modicon M241 Firmware, Schneider-Electric Modicon M241, Schneider-Electric Modicon M251 Firmware, Schneider-Electric Modicon M251.