CVE-2021-32982

Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 passwords are sent as plaintext during unlocking and project transfers. An attacker who has network visibility can observe the password exchange.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-21-166-02 Third Party Advisory US Government Resource
Configurations

Configuration 1


Information

Published : 2022-04-04 08:15

Updated : 2022-04-13 06:21


NVD link : CVE-2021-32982

Mitre link : CVE-2021-32982

Products Affected
No products.
CWE
CWE-319

Cleartext Transmission of Sensitive Information