MODBUS Server Diagnostic Mode (SCADA) (deprecated)

Medium Nessus Network Monitor Plugin ID 3849


The remote host may give an attacker information useful for future attacks.


The remote server is running the MODBUS protocol. This protocol is common on SCADA or process control networks. In addition, the PLC is running with 'Diagnostics' enabled. This is very dangerous, as it can give attackers information that can be used to exploit the machine.


Only allow diagnostic sessions from trusted clients.

See Also

Plugin Details

Severity: Medium

ID: 3849

File Name: 3849.prm

Family: SCADA

Published: 2014/02/26

Modified: 2015/06/01

Dependencies: 3556

Risk Information

Risk Factor: Medium


Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N