Atlascopco: >> Power Focus 6000 Security Vulnerabilities
Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller.
CVSS Score
9.4
EPSS Score
0.0
Published
2023-06-12
Atlas Copco Power Focus 6000 web server uses a small amount of session ID numbers. An attacker could enter a session ID number to retrieve data for an active user’s session.
CVSS Score
9.4
EPSS Score
0.001
Published
2023-06-12
Atlas Copco Power Focus 6000 web server is not a secure connection by default, which could allow an attacker to gain sensitive information by monitoring network traffic between user and controller.
CVSS Score
9.4
EPSS Score
0.0
Published
2023-06-12