Hardcoded Credentials Vulnerability in Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3

Hardcoded Credentials Vulnerability in Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3

CVE-2014-2350 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3 uses hardcoded credentials for diagnostic services, which allows remote attackers to bypass intended access restrictions via a TCP session, as demonstrated by a session that uses the telnet program.

Learn more about our Web Application Penetration Testing UK.