Unauthenticated Access Vulnerability in LS ELECTRIC XBC-DN32U PLC

Unauthenticated Access Vulnerability in LS ELECTRIC XBC-DN32U PLC

CVE-2023-22803 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

LS ELECTRIC XBC-DN32U with operating system version 01.80 is missing authentication to perform critical functions to the PLC. This could allow an attacker to change the PLC's mode arbitrarily.

Learn more about our Web Application Penetration Testing UK.