CVE-2021-47770

HIGH

OpenPLC v3 - Authenticated Remote Code Execution via Hardware Configuration Interface

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47770. PoCs published by Fellipe Oliveira.

AI-analyzed exploit summary This exploit demonstrates an authenticated remote code execution vulnerability in OpenPLC v3 by uploading a malicious PLC program that includes a reverse shell payload. The exploit authenticates, uploads a crafted program, and triggers execution to achieve RCE.

Description

OpenPLC v3 contains an authenticated remote code execution vulnerability that allows attackers with valid credentials to inject malicious code through the hardware configuration interface. Attackers can upload a custom hardware layer with embedded reverse shell code that establishes a network connection to a specified IP and port, enabling remote command execution.

Exploits (1)

exploitdb WORKING POC

by Fellipe Oliveira · pythonwebappspython

https://www.exploit-db.com/exploits/49803

View Code ZIP pw:eip

This exploit demonstrates an authenticated remote code execution vulnerability in OpenPLC v3 by uploading a malicious PLC program that includes a reverse shell payload. The exploit authenticates, uploads a crafted program, and triggers execution to achieve RCE.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: OpenPLC v3

Auth required

Prerequisites: Valid credentials for OpenPLC web interface · Network access to the target · Reverse shell listener setup

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Third Party Advisory exploit

https://www.exploit-db.com/exploits/49803

Various Sources product

https://www.openplcproject.com/

Various Sources product

https://github.com/thiagoralves/OpenPLC_v3

Third Party Advisory third-party-advisory

https://www.vulncheck.com/advisories/openplc-remote-code-execution

Scores

CVSS v3 8.8

EPSS 0.0063

EPSS Percentile 45.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-94

Status published

Products (1)

Autonomy/OpenPLC OpenPLC v3

Published Jan 21, 2026

Tracked Since Feb 18, 2026