Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2024-6326
HistoryJul 16, 2024 - 5:15 p.m.

CVE-2024-6326

2024-07-1617:15:12
CWE-269
[email protected]
web.nvd.nist.gov
10
cve-2024-6326
rockwell automation
sensitive information

EPSS

0

Percentile

9.3%

JSON

An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A malicious user could exploit this vulnerability by starting a back-up or restore process, which temporarily exposes private keys, passwords, pre-shared keys, and database folders when they are temporarily copied to an interim folder. This vulnerability is due to the lack of explicit permissions set on the backup folder. If private keys are obtained by a malicious user, they could impersonate resources on the secured network.

Related

cvelist 1
cve 1
vulnrichment 1
cvelist
cvelist
CVE-2024-6326 Rockwell Automation Unsecured Private Keys in FactoryTalk® System Services
2024-07-16 16:51:18
cve
cve
CVE-2024-6326
2024-07-16 17:15:12
vulnrichment
vulnrichment
CVE-2024-6326 Rockwell Automation Unsecured Private Keys in FactoryTalk® System Services
2024-07-16 16:51:18

EPSS

0

Percentile

9.3%

JSON
Related for NVD:CVE-2024-6326
cvelist1cve1vulnrichment1