WellinTech KingSCADA < 22.214.171.124-EN KAEClientManager Console Remote Authentication Credential Disclosure
Medium Nessus Plugin ID 83917
SynopsisThe WellinTech KingSCADA server installed on the remote host is affected by an authentication credential disclosure vulnerability.
DescriptionThe WellinTech KingSCADA server installed on the remote host is a version prior to 126.96.36.199-EN. It is, therefore, affected by a vulnerability in the KAEClientManager console that allows a remote attacker to authenticate locally on the device rather than on the server, thus bypassing intended access restrictions. The attacker, by sending a crafted packet to TCP port 8130, can then gain access to authentication credential information.
SolutionUpgrade KingSCADA to version 188.8.131.52-EN.