Vulnerabilities > CVE-2015-7914 - 7PK - Security Features vulnerability in Sauter Moduweb Vision 1.5.5

CVSS 8.1 - HIGH

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

sauter

CWE-254

NVD

Published: 2016-02-06

Updated: 2016-12-03

Summary

Sauter EY-WS505F0x0 moduWeb Vision before 1.6.0 allows remote attackers to bypass authentication by leveraging knowledge of a password hash without knowledge of the associated password.

Vulnerable Configurations

Part	Description	Count
OS	Sauter Sauter Moduweb Vision 1.5.5	1

Common Weakness Enumeration (CWE)

CWE-254 - 7PK - Security Features

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-033-01
http://seclists.org/fulldisclosure/2016/Feb/25