Modicon Quantum Telnet Server Default Credentials

medium Nessus Plugin ID 23827


The remote Telnet server can be accessed with a default set of credentials.


The remote device appears to be a Modicon Quantum controller that can be accessed via Telnet using default credentials. An attacker could leverage this issue to gain administrative access to the affected device.


Change the default password or block access to the port.

Plugin Details

Severity: Medium

ID: 23827

File Name: scada_modicon_telnet.nbin

Version: 1.85

Type: remote

Family: SCADA

Published: 12/11/2006

Updated: 5/20/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information


Risk Factor: Medium

Base Score: 6.4

Temporal Score: 6.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: Exploits are available

Reference Information

BID: 51605

ICS-ALERT: 12-020-03