### [CVE-2021-32982](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32982)
![](https://img.shields.io/static/v1?label=Product&message=CLICK%20PLC%20CPU%20Modules%3A%20C0-1x%20CPUs&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=unspecified%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-319%3A%20Cleartext%20Transmission%20of%20Sensitive%20Information&color=brightgreen)

### Description

Automation Direct CLICK PLC CPU Modules: C0-1x CPUs with firmware prior to v3.00 passwords are sent as plaintext during unlocking and project transfers. An attacker who has network visibility can observe the password exchange.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/vishaalmehta1/AdeenAyub