Critical severity9.1NVD Advisory· Published Apr 6, 2016· Updated Jun 17, 2026
CVE-2015-7921
CVE-2015-7921
Description
The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000, and PFXEXGRPLS before 4.05.000 has hardcoded credentials, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of these credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:schneider-electric:proface_gp-pro_ex_ex-ed:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:schneider-electric:proface_gp-pro_ex_ex-ed:*:*:*:*:*:*:*:*range: <=4.0.4
- cpe:2.3:a:schneider-electric:proface_gp-pro_ex_pfxexedls:*:*:*:*:*:*:*:*range: <=4.0.4
- cpe:2.3:a:schneider-electric:proface_gp-pro_ex_pfxexedv:*:*:*:*:*:*:*:*range: <=4.0.4
- cpe:2.3:a:schneider-electric:proface_gp-pro_ex_pfxexgrpls:*:*:*:*:*:*:*:*range: <=4.0.4
- Range: <4.05.000
Patches
Vulnerability mechanics
References
1- ics-cert.us-cert.gov/advisories/ICSA-16-096-01nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.