← back
CVE-2016-8371

CVE-2016-8371

EPSS 11.2%CWE-592
The web server in Phoenix Contact ILC PLCs can be accessed without authenticating even if the authentication mechanism is enabled.
Affected products
Phoenix Contact · Phoenix Contact ILC PLCs
public PoCs found2
cve_referencewww.exploit-db.com/exploits/45590/unverifiedexploitdbwww.exploit-db.com/exploits/45590unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-313-01https://www.exploit-db.com/exploits/45590/http://www.securityfocus.com/bid/94163