Lucene search
CISACISA-KEV-CVE-2023-6448HistoryDec 11, 2023 - 12:00 a.m.
Unitronics Vision PLC and HMI Insecure Default Password Vulnerability
2023-12-1100:00:00
CISA
www.cisa.gov
25
unitronics
vision series
plc
hmi
insecure
default password
vulnerability
remote commands
attackers
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
Low
EPSS
0.039
Percentile
92.1%
Unitronics Vision Series PLCs and HMIs ship with an insecure default password, which if left unchanged, can allow attackers to execute remote commands.
Related
mssecure
mssecure
vulnrichment
vulnrichment
CVE-2023-6448 Unitronics VisiLogic uses a default administrative password
2023-12-05 17:43:40
mmpc
mmpc
cvelist
cvelist
CVE-2023-6448 Unitronics VisiLogic uses a default administrative password
2023-12-05 17:43:40
attackerkb
attackerkb
CVE-2023-6448
2023-12-05 00:00:00
cve
cve
CVE-2023-6448
2023-12-05 18:15:12
ics
ics
prion
prion
Default credentials
2023-12-05 18:15:00
nessus
nessus
Unitronics VisiLogic < 9.9.00 Default Password
2024-03-05 00:00:00
nvd
nvd
CVE-2023-6448
2023-12-05 18:15:12
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
Low
EPSS
0.039
Percentile
92.1%
Related for CISA-KEV-CVE-2023-6448