Insecure Credential Encryption in Rockwell Automation RSView32 7.60.00 and Earlier

Insecure Credential Encryption in Rockwell Automation RSView32 7.60.00 and Earlier

CVE-2015-1010 · MEDIUM Severity

AV:L/AC:L/AU:N/C:C/I:N/A:N

Rockwell Automation RSView32 7.60.00 (aka CPR9 SR4) and earlier does not properly encrypt credentials, which allows local users to obtain sensitive information by reading a file and conducting a decryption attack.

Learn more about our User Device Pen Test.