Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, A remote, unauthenticated attacker can send a request from the RSLogix 500 software to the victim’s MicroLogix controller. The controller will then respond to the client with used password values to authenticate the user on the client-side. This method of authentication may allow an attacker to bypass authentication altogether, disclose sensitive information, or leak credentials.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NRockwellautomation Micrologix 1100
HWRockwellautomationwszystkie wersjeRockwellautomation Micrologix 1100 Firmware
OSRockwellautomationwszystkie wersjeRockwellautomation Micrologix 1400
HWRockwellautomationwszystkie wersjeRockwellautomation Micrologix 1400 A Firmware
OSRockwellautomationwszystkie wersjeRockwellautomation Micrologix 1400 B Firmware
OSRockwellautomation≤ 21.001Rockwellautomation Rslogix 500
APPRockwellautomation≤ 12.001
Powiązane podatności
Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix...
An exploitable access control vulnerability exists in the data, program, and function file permissions functio...
An exploitable access control vulnerability exists in the data, program, and function file permissions functio...
An exploitable access control vulnerability exists in the data, program, and function file permissions functio...
An exploitable access control vulnerability exists in the data, program, and function file permissions functio...