Vulnerabilities > Schneider Electric > Proface GP PRO EX Pfxexedls > Critical

DATE CVE VULNERABILITY TITLE RISK
2016-04-06 CVE-2015-7921 Credentials Management vulnerability in Schneider-Electric products
The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials.
network
low complexity
schneider-electric CWE-255
critical
 9.1
9.1