cvedb.io
CVE-2021-32984
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2022-04-04T20:15:09.100 · Last modified 2026-06-17T03:53:57.087

Summary

All programming connections receive the same unlocked privileges, which can result in a privilege escalation. During the time Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 is unlocked by an authorized user, an attacker can connect to the PLC and read the project without authorization.

Affected products

automationdirect — c0-10dd1e-d_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when automationdirect ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.