Every CVE whose affected-product data names Idec Windldr, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-37400 — CVSS 9.8 (critical): An attacker may obtain the user credentials from the communication between the PLC and the software. As a result, the PLC user program may…
CVE-2021-37401 — CVSS 9.8 (critical): An attacker may obtain the user credentials from file servers, backup repositories, or ZLD files saved in SD cards. As a result, the PLC…
CVE-2024-41716 — CVSS 8.1 (high): Cleartext storage of sensitive information vulnerability exists in WindLDR and WindO/I-NV4. If this vulnerability is exploited, an attacker…
CVE-2021-20826 — CVSS 7.6 (high): Unprotected transport of credentials vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A…
CVE-2021-20827 — CVSS 7.5 (high): Plaintext storage of a password vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series…