Vulnerabilities > CVE-2014-2350 - Credentials Management vulnerability in Emerson Deltav
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3 uses hardcoded credentials for diagnostic services, which allows remote attackers to bypass intended access restrictions via a TCP session, as demonstrated by a session that uses the telnet program.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |