Weak Encryption in Schneider Electric Wonderware Information Server (WIS) Portal 4.0 SP1 through 5.5 Allows Unauthorized Access to Sensitive Information

Weak Encryption in Schneider Electric Wonderware Information Server (WIS) Portal 4.0 SP1 through 5.5 Allows Unauthorized Access to Sensitive Information

CVE-2014-2381 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Schneider Electric Wonderware Information Server (WIS) Portal 4.0 SP1 through 5.5 uses weak encryption, which allows local users to obtain sensitive information by reading a credential file.

Learn more about our Cis Benchmark Audit For Server Software.