Schneider Electric Ampla MES 6.4 provides capability to configure users and their privileges. When Ampla MES users are configured to use Simple Security, a weakness in the password hashing algorithm could be exploited to reverse the user's password. Schneider Electric recommends that users of Ampla MES versions 6.4 and prior should upgrade to Ampla MES version 6.5 as soon as possible.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2018-05-18T13:00:00Z
Updated: 2024-09-17T03:28:56.779Z
Reserved: 2017-06-14T00:00:00
Link: CVE-2017-9635
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-05-18T13:29:00.223
Modified: 2024-11-21T03:36:33.690
Link: CVE-2017-9635
Redhat
No data.