by vicarius
Log in
Join community

CVE-2021-37400

28 Dec 2021
An attacker may obtain the user credentials from the communication between the PLC and the software. As a result, the PLC user program may be uploaded, altered, and/or downloaded.

VTranslations (0)

Remedies (0)

Apps (0)

No Apps

Operating Systems (0)

No Operating Systems

Comments (0)

CVE-2021-37400

9.8 Critical Severity
Share
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Tags (8)
#known_vulnerability#easy_to_exploit#confidentiality_impact_if_exploited#integrity_impact_if_exploited#availability_impact_if_exploited#critical_vulnerability#new_vulnerability_published#CVE-2021-37400
Vulnerability Categories (1)
Insufficiently Protected Credentials
Advisory Links (4)
www.idec.com/home...us.idec.com/idec-...us.idec.com/idec-...jvn.jp/en/vu/JVNV...

Related