CNNVD-202509-3637 Information

CNNVD ID

CNNVD-202509-3637

Related CVE

CVE-2025-54855

• CNNVD Published: 2025-09-23

Description (Chinese)

AutomationDirect CLICK PLUS是美国AutomationDirect公司的一款小型可编程逻辑控制器。 AutomationDirect CLICK PLUS v3.60版本存在安全漏洞，该漏洞源于明文存储敏感信息，可能导致本地用户窃取凭据。

Description (English)

Automation Direct CLICK PLUS is a small programmable logic controller for Automation Direct in the United States. There is a security loophole in the Direct CLICK PLUS v. 3.60 version of Automation Direct, which originates from the explicit storage of sensitive information, which may lead to local users stealing documents.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

AutomationDirect

Published

2025-09-23

Last Modified

2026-02-24

References

https://www.automationdirect.com/support/software-downloads https://www.cisa.gov/news-events/ics-advisories/icsa-25-266-01

Patch

https://www.automationdirect.com/support/software-downloads