CVE-2016-8380

Summary

The web server in Phoenix Contact ILC PLCs allows access to read and write PLC variables without authentication.

Affected Software

VendorProductVersion RangeStatus
Phoenix ContactPhoenix Contact ILC PLCsAll ILC 1xx PLCsaffected

Weaknesses

  • CWE-767: CWE-767: Access to Critical Private Variable via Public Method

ADP Enrichment

CVE Program Container

Additional References

References