CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-1794

The CODESYS OPC DA Server prior V3.5.18.20 stores PLC passwords as plain text in its configuration file so that it is visible to all authorized Microsoft Windows users of the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.9%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.7

References

https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17129&token=1c1485c4a700c04f2069699f5be7558d276ca117&download=
https://customers.codesys.com/index.php?eID=dumpFile&t=f&f=17129&token=1c1485c4a700c04f2069699f5be7558d276ca117&download=

Products affected by CVE-2022-1794

Codesys » Opc Da Server » Version: Any

cpe:2.3:a:codesys:opc_da_server:*
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1794

Products

Pricing

Contact Us