CVE-2024-57811

Published: Jan 13, 2025

Modified: Jan 16, 2025

PUBLISHED

Description

In Eaton X303 3.5.16 - X303 3.5.17 Build 712, an attacker with network access to a XC-303 PLC can login as root over SSH. The root password is hardcoded in the firmware. NOTE: This vulnerability appears in versions that are no longer supported by Eaton.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/google/security-research/security/advisories/GHSA-xf7j-4x67-6h93

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-57811

Description

Affected Products

References