Nikolay Sklyarenko

**Name of the Vulnerable Software and Affected Versions** ControlEdge PLC versions R130.2, R140, R150, and R151 ControlEdge RTU versions R101, R110, R140, R150, and R151 **Description** The issue concerns the exposure of unencrypted passwords on the network. This occurs due to a problem where passwords are not properly secured, potentially allowing unauthorized access to sensitive information. **Recommendations** For ControlEdge PLC versions R130.2, R140, R150, and R151, consider implementing encryption for password transmission to prevent exposure. For ControlEdge RTU versions R101, R110, R140, R150, and R151, apply the same encryption measures as for the PLC versions to secure passwords. As a temporary workaround, restrict network access to minimize the risk of password interception until a proper fix is applied.