File Server and Backup Repository Vulnerability: Unauthorized Access and Manipulation of PLC User Program

File Server and Backup Repository Vulnerability: Unauthorized Access and Manipulation of PLC User Program

CVE-2021-37401 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An attacker may obtain the user credentials from file servers, backup repositories, or ZLD files saved in SD cards. As a result, the PLC user program may be uploaded, altered, and/or downloaded.

Learn more about our Cis Benchmark Audit For Server Software.