Many ICS devices will have built-in diagnostic web pages and some form of web server to allow access to the diagnostic pages. HTTP is known to have the following vulnerabilities:
- Vulnerable HTTP server application code
- Hard coded credentials
- SQL injection
- Cross-site scripting
- Broken authentication and session management
- Insecure direct object references
- Cross-site request forgery
- Security misconfiguration
- Insecure cryptographic storage
- Failure to restrict URL access
A quick search on ICS-CERT reveals the following vulnerabilities involving web servers: