CVE-2017-6015

🗓️ 11 May 2018 13:00:00Reported by icscertType

"CVE-2017-6015 - Rockwell Automation FactoryTalk Activation version 4.00.02 allows unauthorized code execution

Reporter	Title	Published	Views	Family All 10
CNVD	Rockwell Automation FactoryTalk Activation Local Elevation of Privilege Vulnerability	27 Mar 201700:00	–	cnvd
Cvelist	CVE-2017-6015	11 May 201813:00	–	cvelist
EUVD	EUVD-2017-15083	7 Oct 202500:30	–	euvd
ICS	Rockwell Automation FactoryTalk Activation	16 Feb 201700:00	–	ics
NVD	CVE-2017-6015	11 May 201813:29	–	nvd
OSV	CVE-2017-6015	11 May 201813:29	–	osv
Tenable Nessus	Rockwellautomation Factorytalk Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')	8 Nov 201900:00	–	nessus
Tenable Nessus	Rockwell FactoryTalk Activation Manager < 4.01.00 Privilege Escalation	22 Jan 202400:00	–	nessus
Tenable Nessus	Rockwell (CVE-2017-6015) (deprecated)	7 Feb 202200:00	–	nessus
Prion	Design/Logic Flaw	11 May 201813:29	–	prion

NVD

Vulners

Node

rockwellautomation factorytalk_activationRange≤4.00.02

[
  {
    "product": "FactoryTalk Activation",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "status": "affected",
        "version": "FactoryTalk Activation Service, Version 4.00.02 and prior versions."
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/96996
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-17-047-02
rockwellautomation	www.rockwellautomation.custhelp.com/app/answers/detail/a_id/939382

21 Nov 2024 03:28Current

7.7High risk

Vulners AI Score7.7

CVSS 27.2

CVSS 37.8

EPSS0.00054