Vulnerabilities > CVE-2016-2308 - Unspecified vulnerability in American Auto-Matrix products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
american-auto-matrix
NVD
Published: 2016-10-05
Updated: 2016-10-05

Summary

American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application before 3.0.0 and Aspect-Matrix Building Automation Front-End Solutions application store passwords in cleartext, which allows remote attackers to obtain sensitive information by reading a file. <a href="http://cwe.mitre.org/data/definitions/312.html">CWE-312: Cleartext Storage of Sensitive Information</a>

Vulnerable Configurations

Part Description Count
Application
American_Auto-Matrix
2

References