← back
CVE-2016-8380

CVE-2016-8380

EPSS 11.2%CWE-767
The web server in Phoenix Contact ILC PLCs allows access to read and write PLC variables without authentication.
Affected products
Phoenix Contact · Phoenix Contact ILC PLCs
public PoCs found2
cve_referencewww.exploit-db.com/exploits/45590/unverifiedexploitdbwww.exploit-db.com/exploits/45590unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-313-01https://www.exploit-db.com/exploits/45590/http://www.securityfocus.com/bid/94163