Primary

Context

Horner Automation Cscape and PLC Vulnerability Allowing Unauthorized Access via Brute Force Password Attack

Vulnerability

Patched

A vulnerability exists in Horner Automation Cscape software versions 10.0 and PLCs XL4 (version 16.32.0) and XL7 (version 15.60) that allows an attacker with network access to the PLC to brute force passwords. The vulnerability arises from weak password requirements, including limited complexity and no input limiters, enabling unauthorized access to systems and services.

Impact

Exploitation of this vulnerability could lead to unauthorized access to systems and services.

Remediation

Horner Automation recommends users update to Cscape version 10.2 SP2 or later. The latest firmware for both XL4 and XL7 PLCs is also available. For more information, see Horner Automation's release notes.

Added: Apr 17, 2026, 4:36 PM

Updated: Apr 17, 2026, 4:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.7

remediation

7.9

relevance

6.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.7

remediation

7.9

relevance

6.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Horner Automation Cscape and PLC Vulnerability Allowing Unauthorized Access via Brute Force Password Attack

Vulnerability

Impact

Remediation

Affected Products

Horner Automation Cscape

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating