Unauthorized Access to SoMachine Basic Resource Files

Unauthorized Access to SoMachine Basic Resource Files

CVE-2018-7822 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

An Incorrect Default Permissions (CWE-276) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to firmware V1.10.0.0) which could cause unauthorized access to SoMachine Basic resource files when logged on the system hosting SoMachine Basic.

Learn more about our Web Application Penetration Testing UK.