Lucene search
IcscertCVE-2014-5424HistoryNov 14, 2014 - 12:59 a.m.
CVE-2014-5424
2014-11-1400:59:00
CWE-264
icscert
web.nvd.nist.gov
31
rockwell automation
ccw
cve-2014-5424
remote attackers
denial of service
arbitrary code
activex control
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.1
Confidence
High
EPSS
0.021
Percentile
89.2%
Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an invalid property value to an ActiveX control that was built with an outdated compiler.
Affected configurations
Node
rockwellautomationconnected_components_workbenchRange≤6.01.00
| Vendor | Product | Version | CPE |
|---|---|---|---|
| rockwellautomation | connected_components_workbench | * | cpe:2.3:a:rockwellautomation:connected_components_workbench:*:*:*:*:*:*:*:* |
Related
nessus
nessus
Rockwellautomation Connected Unspecified Vulnerability
2019-11-08 00:00:00
Rockwell (CVE-2014-5424) (deprecated)
2022-02-07 00:00:00
ics
ics
prion
prion
Code injection
2014-11-14 00:59:00
zdi
zdi
cvelist
cvelist
CVE-2014-5424
2014-11-14 00:00:00
nvd
nvd
CVE-2014-5424
2014-11-14 00:59:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.1
Confidence
High
EPSS
0.021
Percentile
89.2%
Related for CVE-2014-5424