Severity by source
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
4DescriptionCVE.org
OpenPLC_V3 is vulnerable to a Plaintext Storage of a Password vulnerability that could allow an attacker to retrieve credentials and access sensitive information.
AnalysisAI
Plaintext credential storage in OpenPLC_V3 enables network-based attackers to retrieve authentication credentials without requiring prior authentication or user interaction, leading to complete system compromise. The CVSS v4.0 score of 9.2 reflects critical-severity risk from network-accessible credential exposure affecting confidentiality and integrity across all OpenPLC_V3 deployments. No public exploit identified at time of analysis.
Technical ContextAI
CWE-256 plaintext password storage vulnerability in OpenPLC_V3 exposes credentials through insecure storage mechanisms accessible via network vectors (AV:N). Attack complexity is low (AC:L) with no authentication barrier (PR:N), allowing direct credential retrieval from storage locations without cryptographic protection.
RemediationAI
Immediately implement credential encryption for all stored passwords using industry-standard hashing algorithms (bcrypt, Argon2) with appropriate salt values. Review CISA ICS Advisory ICSA-25-345-10 for vendor-specific remediation guidance at https://www.cisa.gov/news-events/ics-advisories/icsa-25-345-10. No vendor-released patch identified at time of analysis. Interim mitigations: restrict network access to OpenPLC_V3 management interfaces through firewall rules permitting only trusted IP ranges, implement network segmentation isolating industrial control systems from general networks, enforce principle of least privilege for system access, rotate all existing credentials immediately, and monitor authentication logs for unauthorized access attempts.
More in Openplc V3
View allAuthentication bypass in OpenPLC_V3 allows unauthenticated remote attackers to gain unauthorized system access through i
Authorization bypass in OpenPLC_V3 REST API allows authenticated low-privilege users to delete administrator accounts or
Same weakness CWE-256 – Plaintext Storage of a Password
View allSame technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-21041
GHSA-xgm5-hf6v-855x