Hardcoded Credential Vulnerability in Schneider Electric HMI Gateway
CVE-2014-9198

Currently unrated

Key Information:

Vendor: Schneider Electric
Status: Etg3000 Factorycast Hmi Gateway
Vendor: CVE Published:; 27 January 2015

🔔 Create Schneider Electric Vulnerability Alert

What is CVE-2014-9198?

The FTP server on the Schneider Electric ETG3000 FactoryCast HMI Gateway contains hardcoded credentials, which present a critical security risk. Attackers can exploit this vulnerability to gain unauthorized access to the system through an FTP session, potentially compromising sensitive data and system integrity. Users of firmware versions up to 1.60 IR 04 should take immediate steps to secure their systems against unauthorized access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch