ICSA-21-166-02 · Published 2021-06-15 · View on CISA ICS-CERT ↗

Automation Direct CLICK PLC CPU Modules

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to log in as a currently or previously authenticated user or discover passwords for valid users.

CVEs (5)

CVE-2021-32980 CVE-2021-32984 CVE-2021-32986 CVE-2021-32982 CVE-2021-32978

Remediations

Automation Direct reports these vulnerabilities are all mitigated by Version 3.00 and recommends users update software and firmware to the latest version.
Automation Direct also recommends users follow its security guidelines.

Affected Vendors

Automation Direct

Affected Products (1)

Automation Direct · CLICK PLC CPU Modules <v3.00

Affected Sectors

Commercial Facilities, Critical Manufacturing, Information Technology

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more