QID 591402
Date Published: 2023-04-03
QID 591402: AutomationDirect DirectLOGIC controller Cleartext Transmission of Sensitive Information Vulnerability (ICSA-22-167-02)
AFFECTED PRODUCTS
The following D0-06 series CPUs, prior to v2.72: D0-06DD1,D0-06DD2,D0-06DR,D0-06DA,D0-06AR,D0-06AA,D0-06DD1-D,D0-06DD2-D,D0-06DR-D,D0-06DD2-D,D0-06DR-D
D0-05DD: All versions prior to V5.41
D0-05DR: All versions prior to V5.41
D0-05DA: All versions prior to V5.41
D0-05AR: All versions prior to V5.41
D0-05AA: All versions prior to V5.41
D0-05AD: All versions prior to V5.41
D0-05DD-D: All versions prior to V5.41
D0-05DR-D: All versions prior to V5.41
D2-230: All versions
D2-240: All versions
D2-250: All versions
D2-250-1: All versions prior to V4.91
D2-260: All versions prior to V2.71
D2-262: All versions prior to V1.06
D3-350: All versions
D4-430: All versions
D4-440: All versions
D4-450: All versions
D4-454: All versions prior to V1.04
F1-130AA: All versions
F1-130AD: All versions
F1-130DA: All versions
F1-130DD: All versions
F1-130DD-D: All versions
F1-130DR-D: All versions
F1-130AR: All versions
F1-130DR: All versions
QID Detection Logic:
This QID checks for the Vulnerable version of Siemens AutomationDirect DirectLOGIC controller using passive scanning.
Successful exploitation of this vulnerability could cause a loss of sensitive information and unauthorized changes.
Customers are advised to refer to CERT MITIGATIONS section ICSA-22-167-02 for affected packages and patching details.
- icsa-22-167-02 -
www.cisa.gov/news-events/ics-advisories/icsa-22-167-02
CVEs related to QID 591402
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| ICSA-22-167-02 |
|