Cleartext Transmission Vulnerability in Schneider Electric's Network Management Card
CVE-2018-7246

9.8CRITICAL

Key Information:

Vendor: Schneider Electric
Status: 66074 Mge Network Management Card Transverse Installed In Mge Ups And Mge Sts
Vendor: CVE Published:; 18 April 2018

Summary

The Schneider Electric 66074 MGE Network Management Card is susceptible to a vulnerability that allows for the cleartext transmission of sensitive information. This can occur through its integrated web server, which operates on ports 80/443/TCP. An attacker can exploit this vulnerability to remotely access the administrative account if the device's default settings are maintained, as it lacks SSL security for these communications. Specifically, multiple requests to the 'Access Control' page can lead to sensitive account data being transmitted without encryption, making it possible for unauthorized users to intercept and expose administrative credentials.

Affected Version(s)

66074 MGE Network Management Card Transverse installed in MGE UPS and MGE STS MGE Network Management Card Transverse, part number: SF66074. All card versions affected, when installed in following products: MGE Galaxy 5000, MGE Galaxy 6000, MGE Galaxy 9000, MGE EPS 7000, MGE EPS 8000, MGE EPS 6000, MGE Comet UPS, MGE Galaxy PW, MGE Galaxy 3000, MGE Galaxy 4000

References

https://www.schneider-electric.com/en/download/document/S...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 18, 2018
Vulnerability Reserved
Feb 19, 2018