Known Vulnerabilities for products from Openplcproject
Listed below are 7 of the newest known vulnerabilities associated with the vendor "Openplcproject".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Openplcproject can be found at device.report : Openplcproject
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-35556 json | OpenPLC_V3 is vulnerable to a Plaintext Storage of a Password vulnerability that could allow an attacker to retrieve credenti... | Not Provided | 2026-04-09 | 2026-04-16 |
| CVE-2026-35063 json | OpenPLC_V3 REST API endpoint checks for JWT presence but never verifies the caller's role. Any authenticated user with role=u... | Not Provided | 2026-04-09 | 2026-04-16 |
| CVE-2021-31630 json | Command Injection in Open PLC Webserver v3 allows remote attackers to execute arbitrary code via the "Hardware Layer Code Box... | 8.8 - HIGH | 2021-08-03 | 2022-05-03 |
| CVE-2021-26829 json | OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows stored XSS via system_settings.shtm. | 5.4 - MEDIUM | 2021-06-11 | 2021-06-21 |
| CVE-2021-26828 json | OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows remote authenticated users to upload and execute ... | 8.8 - HIGH | 2021-06-11 | 2021-06-21 |
| CVE-2021-3351 json | OpenPLC runtime V3 through 2016-03-14 allows stored XSS via the Device Name to the web server's Add New Device page. | 5.4 - MEDIUM | 2021-08-02 | 2021-08-09 |
| CVE-2018-20818 json | A buffer overflow vulnerability was discovered in the OpenPLC controller, in the OpenPLC_v2 and OpenPLC_v3 versions. It occur... | 9.8 - CRITICAL | 2019-04-22 | 2019-04-23 |
Known software with vulnerabilities from Openplcproject
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Openplcproject | Openplc V2 | - |
| Operating System | Openplcproject | Openplc V2 Firmware | - |
| Hardware | Openplcproject | Openplc V3 | - |
| Operating System | Openplcproject | Openplc V3 Firmware | - |