Schneider Electric Wonderware Information Server (WIS) Portal 4.0 SP1 through 5.5 uses weak encryption, which allows remote attackers to obtain sensitive information by reading a credential file.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Wonderware_information_server | Invensys | 4.0-sp1 (including) | 4.0-sp1 (including) |
| Wonderware_information_server | Invensys | 4.5 (including) | 4.5 (including) |
| Wonderware_information_server | Invensys | 5.0 (including) | 5.0 (including) |
| Wonderware_information_server | Invensys | 5.5 (including) | 5.5 (including) |