Reading the EEPROM or flash memory chip directly from the PLC board using an external programmer. Once the binary dump was obtained, hexadecimal editors were used to locate the specific memory addresses where the upload/download passwords were explicitly stored.
If an exploit fails mid-process or writes data to the wrong memory register, it can permanently corrupt the PLC's firmware (bricking the unit).
To prevent lockout scenarios entirely, automation teams should enforce rigid configuration management policies: xinje plc password crack 2021
Improper communication during a crack attempt can corrupt the firmware, rendering the PLC a "brick" (useless piece of hardware) [1].
11 May 2022 — Executive Summary * Team82 has uncovered two vulnerabilities in XINJE's PLC Program Tool, an engineering workstation. * Version 3. Claroty CVE-2021-34605 Detail - NVD Reading the EEPROM or flash memory chip directly
Xinje Electric Co., Ltd. (XINJE) is a well-known Chinese company specializing in industrial automation products, including Programmable Logic Controllers (PLCs), Human-Machine Interfaces (HMIs), industrial information systems, servo control systems, frequency converters and stepper drives. Their products have been officially applied in major national projects such as the Beijing Olympics and the Shanghai Industrial Expo.
Xinje Programmable Logic Controllers (PLCs) are widely used in industrial automation for their affordability and versatile feature set. However, legacy security implementations in older firmware versions have made them a frequent target for reverse-engineering and password recovery attempts. Claroty CVE-2021-34605 Detail - NVD Xinje Electric Co
Locate the hexadecimal address where the password resides (e.g., specific memory addresses within the flash memory). Interpret the data to retrieve the password. 3. Third-Party Service Providers