Changeable default passwords are not seen as vulnerabilities by ICS-CERT, but should they be?

CSO Online

While responding to a vulnerability report submitted in April, ICS-CERT told a researcher that documented, changeable default passwords are not vulnerabilities. But given the risk behind default passwords and the focus on critical infrastructure security, shouldn’t such things be considered an issue?  A.N. Ananth is one of the experts that disagrees with ISC-CERT, believing that the issue is severe. Read the full article in CSO Online, here.