Hard-coded Password Vulnerability in Siemens SICAM PAS

Hard-coded Password Vulnerability in Siemens SICAM PAS

CVE-2016-8567 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered in Siemens SICAM PAS before 8.00. A factory account with hard-coded passwords is present in the SICAM PAS installations. Attackers might gain privileged access to the database over Port 2638/TCP.

Learn more about our Web Application Penetration Testing UK.