A Use of Hard-coded Credentials vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to disclose sensitive information and take over accounts.
Credits
Noam Moshe of Claroty reported these vulnerabilities to CISA.
