Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When an authenticated password change request takes place, this vulnerability could allow the attacker to intercept the message that includes the legitimate, new password hash and replace it with an illegitimate hash. The user would no longer be able to authenticate to the controller (Micro800: All versions, MicroLogix 1400: Version 21 and later) causing a denial-of-service condition
CVSS Information
N/A
Vulnerability Type
通道可被非端点访问(中间人攻击)
Vulnerability Title
Rockwell Automation Micro 1400 安全漏洞
Vulnerability Description
Rockwell Automation MicroLogix 1400是美国Rockwell Automation公司的一款可编程逻辑控制器。 Rockwell Automation Micro800 and MicroLogix 1400 存在安全漏洞。攻击者可利用该漏洞拦截包含合法的新密码散列的密码更改请求消息,并将其替换为非法散列。用户将不再能够对控制器进行身份验证,从而导致拒绝服务的情况。以下产品和版本受到影响:Micro800: All versions ,MicroLogix 1400: Ve
CVSS Information
N/A
Vulnerability Type
N/A