Total vulnerabilities in the database
GE Fanuc iFIX 5.0 and earlier relies on client-side authentication involving a weakly encrypted local password file, which allows remote attackers to bypass intended access restrictions and start privileged server login sessions by recovering a password or by using a modified program module.
| Software | From | Fixed in |
|---|---|---|
| ge_fanuc / ifix | 2.5 | 2.5.x |
| ge_fanuc / ifix | 3.0 | 3.0.x |
| ge_fanuc / ifix | 3.5 | 3.5.x |
| ge_fanuc / ifix | 2.0 | 2.0.x |
| ge_fanuc / ifix | - | 5.0.x |
| ge_fanuc / ifix | 2.21 | 2.21.x |
| ge_fanuc / ifix | 4.0 | 4.0.x |
| ge_fanuc / ifix | 2.6 | 2.6.x |
| ge_fanuc / ifix | 2.2 | 2.2.x |
| ge_fanuc / ifix | 4.5 | 4.5.x |