Description
An arbitrary memory access vulnerability in the EPA protocol of Dut Computer Control Engineering Co.'s PLC MAC1100 allows attackers to read the contents of any variable area.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/Ni9htMar3/vulnerability/blob/master/PLC/DCCE/DCCE%20MAC1100%20PLC_read.md
Scores
CVSS v3
7.5
EPSS
0.0029
EPSS Percentile
51.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-125
Status
published
Products (1)
dcce/mac1100_plc_firmware
Published
Aug 13, 2021
Tracked Since
Feb 18, 2026