CVE-2023-6409
published 2024-02-14CVE-2023-6409: CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause unauthorized access to a project file protected with application password when…
high7.7CVSS 3.1
AVLACLPRNUINSUCHIHAN
CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause unauthorized
access to a project file protected with application password when opening the file with
EcoStruxure Control Expert.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schneider-electric | ecostruxure_control_expert | < 16.0 | 16.0 |
| schneider-electric | ecostruxure_process_expert | < 2023 | 2023 |
| schneider_electric | ecostruxure_control_expert | — | — |
| schneider_electric | ecostruxure_process_expert | — | — |