Siemens APOGEE PXC / TALON TC Authentication Bypass
APOLOGEE is a Python script and Metasploit module that enumerates a hidden directory on Siemens APOGEE PXC BACnet Automation Controllers and TALON TC BACnet Automation Controllers. With a 7.5 CVSS, this exploit allows for an attacker to perform an authentication bypass using an alternate path or
channel to access hidden directories in the web server. All versions prior
to 3.5 are affected.
https://packetstormsecurity.com/files/169544/siemens_field_panel_directory_trav ersal.py.txt
Fri, 28 Oct 2022 13:48:09 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com