First published: Wed Jan 10 2024(Updated: )
An insufficiently protected credentials vulnerability in KEPServerEX could allow an adversary to capture user credentials as the web server uses basic authentication.
Credit: ot-cert@dragos.com
Affected Software | Affected Version | How to fix |
---|---|---|
PTC Kepware KEPServerEX | >=6.0.2107.0<=6.14.263.0 | |
PTC ThingWorx Kepware Server | >=6.8<=6.14.263.0 | |
PTC ThingWorx Industrial Connectivity | >=8.0<=8.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.