Name of the Vulnerable Software and Affected Versions ОВЕН ПЛК110 (affected versions not specified)

Description The issue is related to the reset of the set password level when power is turned off. An attacker, acting locally, can exploit this to log in without a password due to the password level changing from "for all applications" to "only for CODESYS" after power is turned back on.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.