AutomationDirect CLICK Programmable Logic Controller Decryption and Impersonation Vulnerability

A vulnerability in AutomationDirect CLICK Programmable Logic Controllers could allow an attacker to decrypt sensitive data, impersonate legitimate users or devices, and gain unauthorized access to network resources for lateral attacks. This vulnerability affects several different versions of the CLICK Programmable Logic Controller.

Impact

Exploitation of this vulnerability could lead to unauthorized decryption of sensitive data, impersonation of users or devices, and unauthorized access to network resources, facilitating lateral movement within the network.

Remediation

Users are advised to update to the latest version of the CLICK PLUS PLC firmware. If the update cannot be applied immediately, recommended compensating controls include network isolation, secure communications, access control, application whitelisting, endpoint protection, logging and monitoring, backup and recovery, and ongoing risk assessment.