Vulnerabilities > Schneider Electric > Magelis XBT HMI

DATE CVE VULNERABILITY TITLE RISK
2013-04-04 CVE-2013-2762 Cross-Site Request Forgery (CSRF) vulnerability in Schneider-Electric Magelis XBT HMI
The Schneider Electric Magelis XBT HMI controller has a default password for authentication of configuration uploads, which makes it easier for remote attackers to bypass intended access restrictions via crafted configuration data.
network
low complexity
schneider-electric CWE-352
critical
 10.0
10