Summary
Schneider Electric Quantum Ethernet Module is prone to an authentication- bypass vulnerability.
Attackers can exploit this issue to gain access to the Telnet port service, Windriver Debug port service, and FTP service. Attackers can exploit this vulnerability to execute arbitrary code within the context of the vulnerable device.
Solution
Updates are available. Please see the references for more information.
References
Severity
Classification
-
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Xerox Printer Default Account Authentication Bypass Vulnerability
- Rugged Operating System Backdoor Unauthorized Access Vulnerability
- IPmux-2L TDM Pseudowire Access Gateway Default Credentials
- Cisco TANDBERG C Series and E/EX Series Default Credentials Authentication Bypass Vulnerability
- Fujitsu KVM Default Login