Vulnerabilities > Automationdirect > C0 12Dd2E 2 D Firmware > High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-04	CVE-2021-32978	Insufficiently Protected Credentials vulnerability in Automationdirect products The programming protocol allows for a previously entered password and lock state to be read by an attacker. network low complexity automationdirect CWE-522	7.5
2022-04-04	CVE-2021-32982	Cleartext Transmission of Sensitive Information vulnerability in Automationdirect products Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 passwords are sent as plaintext during unlocking and project transfers. network low complexity automationdirect CWE-319	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.