Weaknesses of type CWE-767
4 resultsCVE-2016-8380—The web server in Phoenix Contact ILC PLCs allows access to read and write PLC variables without authentication.EPSS 11.2%CVE-2020-26868HIGHARC Informatique PcVue Access to Critical Private Variable via Public MethodEPSS 2.1%CVE-2024-36463MEDIUMThe implementation of atob in "Zabbix JS" allows to create a string with arbitrary content and use it to access internal properties of objecEPSS 0.8%CVE-2024-34162MEDIUMThe web interface of the affected devices is designed to hide the LDAP credentials even for administrative users. But configuring LDAP autheEPSS 0.8%