Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2015-1009

Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine Edition through 7.1 SP3 Patch 4 use cleartext for project-window password storage, which allows local users to obtain sensitive information by reading a file.

  • Published: Aug 1, 2015
  • Updated: Apr 13, 2023
  • CVE: CVE-2015-1009
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 1.7
  • AV:L/AC:L/Au:S/C:P/I:N/A:N

CWEs:

Software From Fixed in
indusoft / web_studio - 7.1.3.5.x
wonderware / intouch - 7.1.x