Today > 5 Critical | 36 High | 55 Medium | 1 Low vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-57811

Jan. 13, 2025, 10:15 p.m.

Tags

cve@mitre.org
2025-01-13
CVE-2024-57811

Product(s) Impacted

Eaton X303

  • 3.5.16 - 3.5.17 Build 712

Description

In Eaton X303 3.5.16 - X303 3.5.17 Build 712, an attacker with network access to a XC-303 PLC can login as root over SSH. The root password is hardcoded in the firmware. NOTE: This vulnerability appears in versions that are no longer supported by Eaton.

Weaknesses

Date

Published: Jan. 13, 2025, 10:15 p.m.

Last Modified: Jan. 13, 2025, 10:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://github.com/ cve@mitre.org