Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3 uses hardcoded credentials for diagnostic services, which allows remote attackers to bypass intended access restrictions via a TCP session, as demonstrated by a session that uses the telnet program.
Max CVSS
7.5
EPSS Score
0.45%
Published
2014-05-22
Updated
2014-05-23
Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3 allows local users to modify or read configuration files by leveraging engineering-level privileges.
Max CVSS
4.6
EPSS Score
0.04%
Published
2014-05-22
Updated
2014-05-23
2 vulnerabilities found