Unitronics Vision Series PLCs and HMIs use default administrative passwords. An unauthenticated attacker with network access to a PLC or HMI can take administrative control of the system.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
Configuration 17 (hide)
AND |
|
History
21 Nov 2024, 08:43
Type | Values Removed | Values Added |
---|---|---|
References | () https://downloads.unitronicsplc.com/Sites/plc/Technical_Library/Unitronics-Cybersecurity-Advisory-2023-001-CVE-2023-6448.pdf - Vendor Advisory | |
References | () https://downloads.unitronicsplc.com/Sites/plc/Visilogic/Version_Changes-Bug_Reports/VisiLogic%209.9.00%20Version%20changes.pdf - Release Notes | |
References | () https://www.cisa.gov/news-events/alerts/2023/11/28/exploitation-unitronics-plcs-used-water-and-wastewater-systems - Third Party Advisory, US Government Resource | |
References | () https://www.unitronicsplc.com/cyber_security_vision-samba/ - Product |
26 Jun 2024, 19:59
Type | Values Removed | Values Added |
---|---|---|
First Time |
Unitronics samba 3.5
Unitronics visilogic Unitronics samba 4.3 Firmware Unitronics samba 7 Unitronics samba 4.3 Unitronics samba 7 Firmware Unitronics samba 3.5 Firmware |
|
CPE | cpe:2.3:o:unitronics:vision350_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision230_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision1040_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision1210_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision430_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision280_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision290_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision700_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision530_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision120_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision560_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision570_firmware:-:*:*:*:*:*:*:* |
cpe:2.3:o:unitronics:vision230_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision130_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision120_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:samba_7_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision1040_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision280_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision530_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:samba_4.3_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision1210_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision560_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision700_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision570_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:unitronics:samba_3.5:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:samba_7:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision430_firmware:*:*:*:*:*:*:*:* cpe:2.3:a:unitronics:visilogic:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision290_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision350_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:unitronics:samba_3.5_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:unitronics:samba_4.3:-:*:*:*:*:*:*:* |
References | () https://downloads.unitronicsplc.com/Sites/plc/Technical_Library/Unitronics-Cybersecurity-Advisory-2023-001-CVE-2023-6448.pdf - Vendor Advisory | |
References | () https://downloads.unitronicsplc.com/Sites/plc/Visilogic/Version_Changes-Bug_Reports/VisiLogic%209.9.00%20Version%20changes.pdf - Release Notes | |
References | () https://www.unitronicsplc.com/cyber_security_vision-samba/ - Product |
19 Dec 2023, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
12 Dec 2023, 15:31
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.cisa.gov/news-events/alerts/2023/11/28/exploitation-unitronics-plcs-used-water-and-wastewater-systems - Third Party Advisory, US Government Resource | |
CPE | cpe:2.3:h:unitronics:vision130:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision130_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision1040_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision530_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision530:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision570:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision430:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision1040:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision350:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision280_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision1210:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision700_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision1210_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision280:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision120_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision350_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision570_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision700:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision290:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision120:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision230:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision560_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:unitronics:vision560:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision290_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision430_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:unitronics:vision230_firmware:-:*:*:*:*:*:*:* |
|
First Time |
Unitronics vision560
Unitronics vision230 Firmware Unitronics Unitronics vision700 Firmware Unitronics vision230 Unitronics vision1210 Firmware Unitronics vision560 Firmware Unitronics vision120 Unitronics vision130 Unitronics vision570 Unitronics vision350 Firmware Unitronics vision1210 Unitronics vision700 Unitronics vision120 Firmware Unitronics vision1040 Unitronics vision1040 Firmware Unitronics vision280 Firmware Unitronics vision430 Firmware Unitronics vision530 Firmware Unitronics vision430 Unitronics vision350 Unitronics vision290 Unitronics vision570 Firmware Unitronics vision130 Firmware Unitronics vision530 Unitronics vision290 Firmware Unitronics vision280 |
|
CWE | CWE-798 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
05 Dec 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-05 18:15
Updated : 2025-01-27 21:52
NVD link : CVE-2023-6448
Mitre link : CVE-2023-6448
CVE.ORG link : CVE-2023-6448
JSON object : View
Products Affected
unitronics
- vision280
- vision280_firmware
- samba_3.5
- vision1040_firmware
- vision530_firmware
- vision120_firmware
- vision350_firmware
- vision570_firmware
- vision570
- vision1210_firmware
- vision1210
- vision430
- samba_7
- vision530
- vision350
- vision700_firmware
- visilogic
- vision430_firmware
- vision130
- vision290_firmware
- vision290
- samba_3.5_firmware
- samba_4.3
- vision560_firmware
- samba_7_firmware
- samba_4.3_firmware
- vision560
- vision120
- vision130_firmware
- vision230_firmware
- vision1040
- vision700
- vision230