Lucene search
IcscertCVE-2014-9209HistoryMar 31, 2015 - 1:59 a.m.
CVE-2014-9209
2015-03-3101:59:19
icscert
web.nvd.nist.gov
40
cve-2014-9209
untrusted search path
vulnerability
rockwell automation
factorytalk services platform
privilege escalation
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
25.5%
Untrusted search path vulnerability in the Clean Utility application in Rockwell Automation FactoryTalk Services Platform before 2.71.00 and FactoryTalk View Studio 8.00.00 and earlier allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.
Affected configurations
Node
rockwellautomationfactorytalk_services_platformRange≤2.70.00
ORrockwellautomationfactorytalk_view_studioRange≤8.00.00
| Vendor | Product | Version | CPE |
|---|---|---|---|
| rockwellautomation | factorytalk_services_platform | * | cpe:2.3:a:rockwellautomation:factorytalk_services_platform:*:*:*:*:*:*:*:* |
| rockwellautomation | factorytalk_view_studio | * | cpe:2.3:a:rockwellautomation:factorytalk_view_studio:*:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2015-03-31 01:59:00
nessus
nessus
Rockwell (CVE-2014-9209) (deprecated)
2022-02-07 00:00:00
Rockwellautomation Factorytalk Unspecified Vulnerability
2019-11-08 00:00:00
ics
ics
Rockwell Automation FactoryTalk DLL Hijacking Vulnerabilities
2018-08-27 12:00:00
cvelist
cvelist
CVE-2014-9209
2015-03-31 01:00:00
nvd
nvd
CVE-2014-9209
2015-03-31 01:59:19
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
25.5%
Related for CVE-2014-9209