MEDIUM🇬🇧 English

CVE-2015-6471

CVSS 5.3v3.0pub. 2015-12-23upd. 2026-05-06

Eaton Cooper Power Systems ProView 4.x and 5.x before 5.1 on Form 6 controls and Idea and IdeaPLUS relays does not properly initialize padding fields in Ethernet packets, which allows remote attackers to obtain sensitive information by reading packet data.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
  • Eaton Proview

    APP
    Eaton
    4.05.05.0.15.0.105.0.25.0.35.0.45.0.55.0.65.0.75.0.85.0.9
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2014-9196HIGH7.6ten sam produkt

Eaton Cooper Power Systems ProView 4.0 and 5.0 before 5.0 11 on Form 6 controls and Idea and IdeaPLUS relays g...

CVE-2021-23281CRITICAL10.0ten sam vendor

Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated remote code execution vul...

CVE-2018-16158CRITICAL9.8ten sam vendor

Eaton Power Xpert Meter 4000, 6000, and 8000 devices before 13.4.0.10 have a single SSH private key across dif...

CVE-2018-8847CRITICAL9.8ten sam vendor

Eaton 9000X DriveA versions 2.0.29 and prior has a stack-based buffer overflow vulnerability, which may allow ...

CVE-2018-12031CRITICAL9.8ten sam vendor

Local file inclusion in Eaton Intelligent Power Manager v1.6 allows an attacker to include a file via server/n...