Lucene search
HistoryFeb 05, 2014 - 5:15 a.m.
CVE-2014-0755
cve-2014-0755
rockwell automation
rslogix 5000
local privilege escalation
password protection
nvd
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
26.3%
Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files (aka project files), which allows local users to obtain sensitive information or modify data via unspecified vectors.
Affected configurations
Node
rockwellautomationrslogix_5000_design_and_configuration_softwareMatch7.0
ORrockwellautomationrslogix_5000_design_and_configuration_softwareMatch18.0
ORrockwellautomationrslogix_5000_design_and_configuration_softwareMatch20.01
ORrockwellautomationrslogix_5000_design_and_configuration_softwareMatch21.0
rockwellautomationlogix_5000_controllerMatch-
Related
nvd
nvd
CVE-2014-0755
2014-02-05 05:15:29
prion
prion
Design/Logic Flaw
2014-02-05 05:15:00
nessus
nessus
Rockwellautomation Rslogix Unspecified Vulnerability
2019-11-08 00:00:00
Rockwell (CVE-2014-0755) (deprecated)
2022-02-07 00:00:00
ics
ics
Rockwell RSLogix 5000 Password Vulnerability
2018-09-06 12:00:00
cvelist
cvelist
CVE-2014-0755
2014-02-05 02:00:00
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.1 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
26.3%
Related for CVE-2014-0755