CVE-2011-4859 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2011-4859

Modified

More Info Official Page

Source-cve@mitre.org

Published At-17 Dec, 2011 | 11:55

Updated At-29 Apr, 2026 | 01:13

The Schneider Electric Quantum Ethernet Module, as used in the Quantum 140NOE771* and 140CPU65* modules, the Premium TSXETY* and TSXP57* modules, the M340 BMXNOE01* and BMXP3420* modules, and the STB DIO STBNIC2212 and STBNIP2* modules, uses hardcoded passwords for the (1) AUTCSE, (2) AUT_CSE, (3) fdrusers, (4) ftpuser, (5) loader, (6) nic2212, (7) nimrohs2212, (8) nip2212, (9) noe77111_v500, (10) ntpupdate, (11) pcfactory, (12) sysdiag, (13) target, (14) test, (15) USER, and (16) webserver accounts, which makes it easier for remote attackers to obtain access via the (a) TELNET, (b) Windriver Debug, or (c) FTP port.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C

Type: Primary

Version: 2.0

Base score: 10.0

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:C/I:C/A:C

CPE Matches

Schneider Electric SE

>>quantum_ethernet_module_140cpu65150>>Versions up to 3.5(inclusive)

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140cpu65150:*:*:*:*:*:*:*:*

Schneider Electric SE

>>quantum_ethernet_module_140cpu65160>>Versions up to 3.5(inclusive)

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140cpu65160:*:*:*:*:*:*:*:*

Schneider Electric SE

>>quantum_ethernet_module_140cpu65260>>Versions up to 3.5(inclusive)

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140cpu65260:*:*:*:*:*:*:*:*

Schneider Electric SE

>>quantum_ethernet_module_140noe77100>>Versions up to 3.3(inclusive)

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140noe77100:*:*:*:*:*:*:*:*

Schneider Electric SE

>>quantum_ethernet_module_140noe77100>>Versions up to 3.4(inclusive)

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140noe77100:*:*:*:*:*:*:*:*

Schneider Electric SE

>>quantum_ethernet_module_140noe77101>>Versions up to 4.9(inclusive)

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140noe77101:*:*:*:*:*:*:*:*

Schneider Electric SE

>>quantum_ethernet_module_140noe77111>>Versions up to 5.0(inclusive)

cpe:2.3:a:schneider-electric:quantum_ethernet_module_140noe77111:*:*:*:*:*:*:*:*

Schneider Electric SE

>>premium_ethernet_module_tsxety4103>>Versions up to 5.0(inclusive)

cpe:2.3:a:schneider-electric:premium_ethernet_module_tsxety4103:*:*:*:*:*:*:*:*

Schneider Electric SE

>>premium_ethernet_module_tsxety5103>>Versions up to 5.0(inclusive)

cpe:2.3:a:schneider-electric:premium_ethernet_module_tsxety5103:*:*:*:*:*:*:*:*

Schneider Electric SE

>>premium_ethernet_module_tsxp57163m>>Versions up to 4.9(inclusive)

cpe:2.3:a:schneider-electric:premium_ethernet_module_tsxp57163m:*:*:*:*:*:*:*:*

Schneider Electric SE

>>premium_ethernet_module_tsxp572634m>>Versions up to 4.9(inclusive)

cpe:2.3:a:schneider-electric:premium_ethernet_module_tsxp572634m:*:*:*:*:*:*:*:*

Schneider Electric SE

>>premium_ethernet_module_tsxp573634m>>Versions up to 4.9(inclusive)

cpe:2.3:a:schneider-electric:premium_ethernet_module_tsxp573634m:*:*:*:*:*:*:*:*

Schneider Electric SE

>>premium_ethernet_module_tsxp574634m>>Versions up to 3.5(inclusive)

cpe:2.3:a:schneider-electric:premium_ethernet_module_tsxp574634m:*:*:*:*:*:*:*:*

Schneider Electric SE

>>premium_ethernet_module_tsxp575634m>>Versions up to 3.5(inclusive)

cpe:2.3:a:schneider-electric:premium_ethernet_module_tsxp575634m:*:*:*:*:*:*:*:*

Schneider Electric SE

>>premium_ethernet_module_tsxp576634m>>Versions up to 3.5(inclusive)

cpe:2.3:a:schneider-electric:premium_ethernet_module_tsxp576634m:*:*:*:*:*:*:*:*

Schneider Electric SE

>>m340_ethernet_module_bmxnoe0100>>Versions up to 2.3(inclusive)

cpe:2.3:a:schneider-electric:m340_ethernet_module_bmxnoe0100:*:*:*:*:*:*:*:*

Schneider Electric SE

>>m340_ethernet_module_bmxnoe0110>>Versions up to 4.65(inclusive)

cpe:2.3:a:schneider-electric:m340_ethernet_module_bmxnoe0110:*:*:*:*:*:*:*:*

Schneider Electric SE

>>m340_ethernet_module_bmxp342020>>Versions up to 2.2(inclusive)

cpe:2.3:a:schneider-electric:m340_ethernet_module_bmxp342020:*:*:*:*:*:*:*:*

Schneider Electric SE

>>m340_ethernet_module_bmxp342030>>Versions up to 2.2(inclusive)

cpe:2.3:a:schneider-electric:m340_ethernet_module_bmxp342030:*:*:*:*:*:*:*:*

Schneider Electric SE

>>stb_dio_ethernet_module_stbnic2212>>Versions up to 2.10(inclusive)

cpe:2.3:a:schneider-electric:stb_dio_ethernet_module_stbnic2212:*:*:*:*:*:*:*:*

Schneider Electric SE

>>stb_dio_ethernet_module_stbnip2212>>Versions up to 2.73(inclusive)

cpe:2.3:a:schneider-electric:stb_dio_ethernet_module_stbnip2212:*:*:*:*:*:*:*:*

Schneider Electric SE

>>stb_dio_ethernet_module_stbnip2311>>Versions up to 3.01(inclusive)

cpe:2.3:a:schneider-electric:stb_dio_ethernet_module_stbnip2311:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1	cve@mitre.org	N/A
http://secunia.com/advisories/47723	cve@mitre.org	N/A
http://www.securityfocus.com/bid/51605	cve@mitre.org	N/A
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf	cve@mitre.org	N/A
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf	cve@mitre.org	N/A
http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/72587	cve@mitre.org	N/A
http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/47723	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/51605	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/72587	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/47723

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/51605

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/72587

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://secunia.com/advisories/47723

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/51605

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-346-01.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-12-020-03.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: http://www.us-cert.gov/control_systems/pdf/ICSA-12-018-01.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/72587

Source: af854a3a-2127-422b-91ae-364da2661108

Resource: N/A