A vulnerability has been identified in Siemens APOGEE PXC and TALON TC BACnet Automation Controllers in all versions <V3.5. An attacker with network access to the integrated web server (80/tcp and 443/tcp) could bypass the authentication and download sensitive information from the device.
[
{
"vendor": "n/a",
"product": "APOGEE PXC and TALON TC BACnet Automation Controllers All versions <V3.5",
"versions": [
{
"version": "APOGEE PXC and TALON TC BACnet Automation Controllers All versions <V3.5",
"status": "affected"
}
]
}
]