Vulnerabilities > Idec > Microsmart Plus Fc6A Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-12-28 CVE-2021-37401 Insufficiently Protected Credentials vulnerability in Idec products
An attacker may obtain the user credentials from file servers, backup repositories, or ZLD files saved in SD cards.
network
low complexity
idec CWE-522
critical
 9.8
9.8
2021-12-28 CVE-2021-37400 Insufficiently Protected Credentials vulnerability in Idec products
An attacker may obtain the user credentials from the communication between the PLC and the software.
network
low complexity
idec CWE-522
critical
 9.8
9.8