Unrated severityNVD Advisory· Published Jul 11, 2022· Updated Sep 16, 2024
Plaintext Storage of a password in CODESYS V3 OPC DA Server
CVE-2022-1794
Description
The CODESYS OPC DA Server prior V3.5.18.20 stores PLC passwords as plain text in its configuration file so that it is visible to all authorized Microsoft Windows users of the system.
Affected products
2- Range: <3.5.18.20
- CODESYS/CODESYS OPC DA Serverv5Range: V3
Patches
Vulnerability mechanics
References
1- customers.codesys.com/index.phpmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.