An insufficiently protected credentials vulnerability in KEPServerEX could allow an adversary to capture user credentials as the web server uses basic authentication.
2024-01-10T21:15:08.790
2024-11-21T07:57:04.600
Modified
CVSSv3.1: 5.7 (MEDIUM)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | ptc | kepware_kepserverex | ≤ 6.14.263.0 | Yes |
Application | ptc | thingworx_kepware_server | ≤ 6.14.263.0 | Yes |
Application | ptc | thingworx_industrial_connectivity | ≤ 8.5 | Yes |