High severity8.8NVD Advisory· Published Jan 21, 2026· Updated Apr 15, 2026
CVE-2021-47770
CVE-2021-47770
Description
OpenPLC v3 contains an authenticated remote code execution vulnerability that allows attackers with valid credentials to inject malicious code through the hardware configuration interface. Attackers can upload a custom hardware layer with embedded reverse shell code that establishes a network connection to a specified IP and port, enabling remote command execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = v3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.