Schneider Electric FTP Server Default Credentials
Critical Nessus Plugin ID 23821
SynopsisThe remote FTP server has one or more accounts with default /
DescriptionThe remote FTP server has an account with a known username / password
combination, which is hardcoded into the device's firmware and
difficult to change or remove. An attacker may be able to use this to
gain privileged authenticated access to the system, which could allow
for other attacks against the affected device.
SolutionBlock access to the vulnerable device ports.