Vulnerabilities > CVE-2016-2308 - Unspecified vulnerability in American Auto-Matrix products

CVSS 8.6 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

LOW

Availability impact

LOW

network

low complexity

american-auto-matrix

NVD

Published: 2016-10-05

Updated: 2024-11-21

Summary

American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application before 3.0.0 and Aspect-Matrix Building Automation Front-End Solutions application store passwords in cleartext, which allows remote attackers to obtain sensitive information by reading a file.

Vulnerable Configurations

Part	Description	Count
Application	American_Auto-Matrix American Auto Matrix Aspect Matrix Building Automation Front END Solutions Application - American Auto Matrix Aspect Nexus Building Automation Front END Solutions Application 2.0	2

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-273-01-0
https://ics-cert.us-cert.gov/advisories/ICSA-16-273-01-0