A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists which could leak sensitive information transmitted between the software and the Modicon M218, M241, M251, and M258 controllers.
The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ecostruxure_machine_expert | Schneider-electric | * | * |
Somachine | Schneider-electric | * | * |
Somachine_motion | Schneider-electric | * | * |