CVE-2021-26829

CVSS v3.1

5.4

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions OpenPLC ScadaBR versions through 0.9.1 on Linux OpenPLC ScadaBR versions through 1.12.4 on Windows

Description OpenPLC ScadaBR is susceptible to a stored cross-site scripting (XSS) issue. The issue is triggered through the

system settings.shtm

file. The pro-Russian hacktivist group TwoNet exploited this and other issues, including default credentials, to fabricate attacks on water treatment systems and disrupt operations by disabling logs and alarms. This represents a shift towards interference with operational technology (OT) and industrial control systems (ICS).

Recommendations OpenPLC ScadaBR versions through 0.9.1 on Linux should be updated. OpenPLC ScadaBR versions through 1.12.4 on Windows should be updated.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2021-26829

Affected Products

Windows

CVE-2021-26829

Weakness Enumeration

Related Identifiers

Affected Products

References · 15