Schneider-electric ≫ Ampla Manufacturing Execution System
2 vulnerabilities found.
Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.9
CVE-2017-9635
- EPSS 0.04%
- Published 18.05.2018 13:29:00
- Last modified 21.11.2024 03:36:33
Schneider Electric Ampla MES 6.4 provides capability to configure users and their privileges. When Ampla MES users are configured to use Simple Security, a weakness in the password hashing algorithm could be exploited to reverse the user's password. ...
4.1
CVE-2017-9637
- EPSS 0.03%
- Published 18.05.2018 13:29:00
- Last modified 21.11.2024 03:36:33
Schneider Electric Ampla MES 6.4 provides capability to interact with data from third party databases. When connectivity to those databases is configured to use a SQL user name and password, an attacker may be able to sniff details from the connectio...
1