"Cisco Finds 15 Vulnerabilities in AutomationDirect PLCs"

Cisco's Talos research and threat intelligence unit found 15 vulnerabilities impacting AutomationDirect’s Productivity series Programmable Logic Controllers (PLCs). The vulnerabilities are all classified as being of high or critical severity. They can be exploited for Remote Code Execution (RCE) or Denial-of-Service (DoS) attacks, potentially disrupting industrial environments and causing significant costs. According to Yves Younan, senior manager at Talos Vulnerability Discovery and Research, the impacted PLCs are usually not exposed to the Internet, so an attacker would need to gain a foothold in the targeted organization's network before exploiting the flaws. This article continues to discuss the discovery of 15 vulnerabilities in PLCs made by the US-based industrial automation products provider AutomationDirect. 

SecurityWeek reports "Cisco Finds 15 Vulnerabilities in AutomationDirect PLCs"

Submitted by grigby1
 

Submitted by Gregory Rigby on