cvedb.io
CVE-2022-1794
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2022-07-11T11:15:08.047 · Last modified 2026-06-17T04:23:07.427

Summary

The CODESYS OPC DA Server prior V3.5.18.20 stores PLC passwords as plain text in its configuration file so that it is visible to all authorized Microsoft Windows users of the system.

Affected products

codesys — opc_da_server

Does this affect you?

Add your gear to cvedb and we'll alert you only when codesys ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.