CVE-2023-22804

LS ELECTRIC XBC-DN32U with operating system version 01.80 is missing authentication to create users on the PLC. This could allow an attacker to create and use an account with elevated privileges and take control of the device.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-23-040-02 Third Party Advisory US Government Resource
Configurations

Configuration 1


Information

Published : 2023-02-15 06:15

Updated : 2023-02-24 07:08


NVD link : CVE-2023-22804

Mitre link : CVE-2023-22804

Products Affected
No products.
CWE