CVE-2017-16731
8.8HIGHAn Unprotected Transport of Credentials issue was discovered in ABB Ellipse 8.3 through Ellipse 8.9 released prior to December 2017 (including Ellipse Select). A vulnerability exists in the authentica
Veröffentlicht: 12/20/2017Aktualisiert: 4/20/2025
Beschreibung
An Unprotected Transport of Credentials issue was discovered in ABB Ellipse 8.3 through Ellipse 8.9 released prior to December 2017 (including Ellipse Select). A vulnerability exists in the authentication of Ellipse to LDAP/AD using the LDAP protocol. An attacker could exploit the vulnerability by sniffing local network traffic, allowing the discovery of authentication credentials.
KI-AnalyseKI-gestützt
Betroffene Produkte
hitachienergyellipse
Referenzen
- https://ics-cert.us-cert.gov/advisories/ICSA-17-353-01Third Party AdvisoryUS Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSA-17-353-01Third Party AdvisoryUS Government Resource