CODESYS WebVisu Panel Detection Scanner
This scanner detects the use of CODESYS WebVisu in digital assets. It helps identify instances where access to PLC visualizations and industrial control interfaces may be exposed.
Short Info
Level
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
11 days 11 hours
Scan only one
URL
Toolbox
CODESYS WebVisu is a web-based human-machine interface (HMI) component within the CODESYS industrial automation runtime. Used by engineers and technicians, it facilitates browser-based access to programmable logic controller (PLC) visualizations. This software plays a crucial role in industrial settings for managing and controlling machinery and processes from remote locations. CODESYS WebVisu is widely used in industries such as manufacturing, transportation, and energy for effective automation management. By providing real-time data visualization, it enables operators to monitor and adjust industrial operations seamlessly.
CODESYS WebVisu panel detection identifies web interfaces related to the CODESYS software in various networks. This scan identifies the presence of the WebVisu panel, potentially revealing exposed instances that are accessible without authentication. The vulnerability could lead to unauthorized access to sensitive industrial controls and process data. Detecting these panels is crucial for preventing unauthorized interactions with industrial systems. It's an essential step for ensuring that critical operational data is protected from external threats and unauthorized users.
The detection process focuses on identifying key attributes of the WebVisu panel by searching for specific words and status codes within HTTP responses. It checks for the presence of terms like 'WebVisu Authentication' and 'WEBVISU LOGIN' in the web page's body. The scan ensures that the response status code is 200, indicating a successful connection to the WebVisu interface. By analyzing these elements, the scan effectively pinpoints accessible WebVisu panels in industrial systems. This information helps in assessing the security posture of industrial control systems running CODESYS WebVisu.
Exposing the CODESYS WebVisu panel to unauthorized users can lead to significant security risks, including unauthorized access to process controls and data. Potential effects include manipulation of industrial processes and disruption of operational workflows. Unauthorized use of the interface could lead to data breaches, impacting confidentiality and integrity. Malicious actors might exploit this access to interfere with critical industrial operations. Protecting these panels is vital to prevent operational disruptions and ensure industrial systems' safety and reliability.
REFERENCES
