2 matches found
CVE-2023-6448
Unitronics VisiLogic before version 9.9.00 (Vision and Samba PLCs/HMIs) is affected by CVE-2023-6448 due to an insecure default administrative password. An unauthenticated, network-accessible attacker can gain full administrative control of a vulnerable system. Mitigation includes upgrading to Vi...
CVE-2023-2003
CVE-2023-2003 affects Unitronics Vision1210 (OS version 4.3, build 5). A remote attacker could store base64-encoded malicious code in device data tables via the PCOM protocol, which can later be retrieved by a client and executed on the device. Public sources describe this as an embedded maliciou...