This security bulletin contains one low risk vulnerability.
Exploit availability: NoDescription
The vulnerability allows a local user to compromise vulnerable system
The vulnerability exists due to hidden functionality (backdoor) is present in software, related to a legacy support account. A local user can use this functionality to inappropriate access to the TriStation 1131 project file.Mitigation
Install updates from vendor's website.Vulnerable software versions
Triconex TriStation 1131: 4.9.0 - 4.10.0CPE2.3
Q & A
Can this vulnerability be exploited remotely?
How the attacker can exploit this vulnerability?
Is there known malware, which exploits this vulnerability?