Back to search
CVE-2016-2296
Published: May 14, 2016
Modified: Aug 5, 2024
PUBLISHED
Description
Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited does not require authentication for "post-admin" login pages, which allows remote attackers to obtain sensitive information or modify data via unspecified vectors.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20160517 [ICS] Meteocontrol WEB'log Multiple Vulnerabilities
mailing-list
x_refsource_FULLDISC
39822
exploit
x_refsource_EXPLOIT-DB
https://ics-cert.us-cert.gov/advisories/ICSA-16-133-01
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now