Carel pCOWeb Cleartext Password Storage Vulnerability

Carel pCOWeb Cleartext Password Storage Vulnerability

CVE-2019-11369 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

An issue was discovered in Carel pCOWeb prior to B1.2.4. In /config/pw_changeusers.html the device stores cleartext passwords, which may allow sensitive information to be read by someone with access to the device.

Learn more about our Web App Pen Testing.