← back
CVE-2014-9199

Clorius Controls A/S ISC SCADA Insecure Java Client Inadequate Encryption Strength

CVSS 10 EPSS 2.6%CWE-326
The Clorius Controls Java web client before 01.00.0009g allows remote attackers to discover credentials by sniffing the network for cleartext-equivalent traffic.
AV:N/AC:L/Au:N/C:C/I:C/A:C
Affected products
Clorius Controls · A/S Java web client

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-15-013-02https://www.cisa.gov/news-events/ics-advisories/icsa-15-013-02http://www.cloriuscontrols.com