CNNVD-202601-3935 Information
CNNVD ID
CNNVD-202601-3935
Related CVE
- CNNVD Published: 2026-01-22
Description (Chinese)
AutomationDirect CLICK Programmable Logic Controller是美国AutomationDirect公司的一个可编程逻辑控制器。 AutomationDirect CLICK Programmable Logic Controller存在安全漏洞,该漏洞源于攻击者可解密敏感数据、冒充合法用户或设备,并可能访问网络资源进行横向攻击。
Description (English)
Automation Direct CLICK Programmable Logic Contractor is a programmable logical controller for Automation Direct, United States. There is a security loophole in the Operation Direct CLICK Programme Logic Contractors, which stems from the fact that the attackers can decrypt sensitive data, impersonate legitimate users or equipment and may access network resources for horizontal attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
AutomationDirect
Published
2026-01-22
Last Modified
2026-02-24
References
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-022-02.json https://www.cisa.gov/news-events/ics-advisories/icsa-26-022-02 https://access.redhat.com/security/cve/cve-2025-25051
Patch
https://www.automationdirect.com/adc/home/home
Share on: