Rockwell Automation MicroLogix 1100 PLC Default Credentials

high Nessus Plugin ID 84566

Synopsis

The remote device can be accessed with default credentials.

Description

The remote device appears to be a Rockwell Automation MicroLogix 1100 PLC that can be accessed using default HTTP credentials. An attacker can utilize this to gain administrative access to the affected device.

Solution

Change the default password or block access to the port.

Plugin Details

Severity: High

ID: 84566

File Name: scada_rockwell_micrologix_1100_plc_default_http.nbin

Version: 1.66

Type: remote

Family: SCADA

Published: 7/7/2015

Updated: 7/19/2022

Risk Information

CVSS v2

Risk Factor: High

Base Score: 8.3

Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:rockwellautomation:micrologix:1100

Required KB Items: SCADA/Rockwell Automation MicroLogix 1100 PLC Web Server

Excluded KB Items: global_settings/supplied_logins_only

Vulnerability Publication Date: 1/20/2012