Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.ROCKWELL_FACTORYTALK_SERVICES_PLATFORM_2_74_CVE-2024-21915.NASLHistoryFeb 28, 2024 - 12:00 a.m.
Rockwell FactoryTalk Services Platform < 2.74 Privilege Escalation
2024-02-2800:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
rockwell
factorytalk
services platform
privilege escalation
vulnerability
windows
ftsp
administrator group
sensitive data
threat actor
cve-2024-21915
nessus
scanner
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
9.3
Confidence
High
EPSS
0
Percentile
9.0%
The version of Rockwell FactoryTalk Services Platform installed on the remote Windows host is less than 2.74. It is, therefore, affected by a vulnerability.
- A privilege escalation vulnerability exists in FactoryTalk® Service Platform (FTSP). If exploited, a malicious user with basic user group privileges could potentially sign into the software and receive FTSP Administrator Group privileges. A threat actor could potentially read and modify sensitive data, delete data and render the FTSP system unavailable. (CVE-2024-21915)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(191096);
script_version("1.2");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/05/31");
script_cve_id("CVE-2024-21915");
script_xref(name:"ICSA", value:"24-046-16");
script_xref(name:"IAVA", value:"2024-A-0317");
script_name(english:"Rockwell FactoryTalk Services Platform < 2.74 Privilege Escalation");
script_set_attribute(attribute:"synopsis", value:
"An application installed on the remote Windows host is affected by a vulnerability.");
script_set_attribute(attribute:"description", value:
"The version of Rockwell FactoryTalk Services Platform installed on the remote Windows host is less than 2.74. It is, therefore, affected by a
vulnerability.
- A privilege escalation vulnerability exists in FactoryTalk® Service Platform
(FTSP). If exploited, a malicious user with basic user group privileges
could potentially sign into the software and receive FTSP Administrator
Group privileges. A threat actor could potentially read and modify sensitive
data, delete data and render the FTSP system unavailable. (CVE-2024-21915)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://www.cisa.gov/news-events/ics-advisories/icsa-24-046-16");
script_set_attribute(attribute:"see_also", value:"https://www.rockwellautomation.com/en-us/support/advisory.SD1662.html");
script_set_attribute(attribute:"solution", value:
"Upgrade to Rockwell FactoryTalk Services Platform version 2.74 or later or refer to the vendor advisory for other mitigations.");
script_set_attribute(attribute:"agent", value:"windows");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-21915");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/02/15");
script_set_attribute(attribute:"patch_publication_date", value:"2015/08/31");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/02/28");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:rockwellautomation:factorytalk_services_platform");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SCADA");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("rockwell_factorytalk_services_platform_win_installed.nbin");
script_require_keys("installed_sw/Rockwell FactoryTalk Services Platform");
exit(0);
}
include('vcf.inc');
var app_info = vcf::get_app_info(app:'Rockwell FactoryTalk Services Platform', win_local:TRUE);
var constraints = [
{ 'fixed_version':'2.74' }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
Related
ics
ics
Rockwell Automation FactoryTalk Service Platform
2024-02-15 12:00:00
prion
prion
Privilege escalation
2024-02-16 19:15:00
cve
cve
CVE-2024-21915
2024-02-16 19:15:08
vulnrichment
vulnrichment
cvelist
cvelist
nvd
nvd
CVE-2024-21915
2024-02-16 19:15:08
thn
thn
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
9.3
Confidence
High
EPSS
0
Percentile
9.0%
Related for ROCKWELL_FACTORYTALK_SERVICES_PLATFORM_2_74_CVE-2024-21915.NASL