CVE-2015-7921
published 2016-04-06CVE-2015-7921: The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded…
critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schneider-electric | proface_gp-pro_ex_ex-ed | <= 4.0.4 | — |
| schneider-electric | proface_gp-pro_ex_pfxexedls | <= 4.0.4 | — |
| schneider-electric | proface_gp-pro_ex_pfxexedv | <= 4.0.4 | — |
| schneider-electric | proface_gp-pro_ex_pfxexgrpls | <= 4.0.4 | — |