Lucene search
HistoryJan 17, 2015 - 2:59 a.m.
CVE-2014-9199
cve-2014-9199
clorius controls
java
web client
remote attackers
credentials
network sniffing
cleartext traffic
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
7 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
The Clorius Controls Java web client before 01.00.0009g allows remote attackers to discover credentials by sniffing the network for cleartext-equivalent traffic.
Affected configurations
Node
clorius_controls_a\/sjava_web_clientRange≤01.00.0009b
| CPE | Name | Operator | Version |
|---|---|---|---|
| clorius_controls_a\/s:java_web_client | clorius controls a/s java web client | le | 01.00.0009b |
Related
ics
ics
Clorius Controls A/S ISC SCADA Insecure Java Client Web Authentication
2018-08-29 12:00:00
cvelist
cvelist
CVE-2014-9199
2015-01-17 02:00:00
prion
prion
Code injection
2015-01-17 02:59:00
nvd
nvd
CVE-2014-9199
2015-01-17 02:59:06
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
7 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.0%
Related for CVE-2014-9199