cvedb.io
CVE-2015-7921
CRITICAL · CVSS 9.1
EPSS exploitation probability: 0%
Published 2016-04-06T23:59:02.473 · Last modified 2026-06-17T00:33:23.527

Summary

The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials.

Affected products

schneider-electric — proface_gp-pro_ex_ex-ed

Does this affect you?

Add your gear to cvedb and we'll alert you only when schneider-electric ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.