Lucene search
K

838 matches found

ICS
ICS
added 2023/10/26 6:0 a.m.26 views

Rockwell Automation FactoryTalk View Site Edition

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : FactoryTalk View Site Edition Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could cause the...

7.5CVSS7.7AI score0.00898EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2023/10/24 12:0 a.m.7 views

The vulnerability of the software in the FactoryTalk Linx automation system, which is part of Rockwell Automation PanelView Plus, allows a intruder to access confidential information or cause service failures.

The vulnerability of the FactoryTalk Linx automation system software included in Rockwell Automation PanelView Plus relates to writing beyond buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to gain access to confidential information or cause service failures...

8.5CVSS8.2AI score0.09603EPSS
Exploits0References2Affected Software1
ICS
ICS
added 2023/10/17 6:0 a.m.50 views

Rockwell Automation FactoryTalk Linx

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : FactoryTalk Linx Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could lead to information...

9.1CVSS8.9AI score0.09603EPSS
Exploits0References8
CNVD
CNVD
added 2023/10/17 12:0 a.m.17 views

Rockwell Automation FactoryTalk Linx Input Validation Error Vulnerability

Rockwell Automation FactoryTalk Linx is a set of industrial communication solutions from Rockwell Rockwell Automation. It is used to communicate between small applications and large automation systems. Rockwell Automation FactoryTalk Linx has an input validation error vulnerability that can be...

9.1CVSS6.6AI score0.09603EPSS
Exploits0References1
OSV
OSV
added 2023/10/13 1:15 p.m.3 views

CVE-2023-29464

FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure. If the size is larg...

9.1CVSS6AI score0.09603EPSS
Exploits0References1
NVD
NVD
added 2023/10/13 1:15 p.m.38 views

CVE-2023-29464

FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure. If the size is larg...

9.1CVSS8.6AI score0.09603EPSS
Exploits0References1
Prion
Prion
added 2023/10/13 1:15 p.m.24 views

Information disclosure

FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure. If the size is larg...

6.4CVSS8.8AI score0.09603EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/13 12:57 p.m.43 views

CVE-2023-29464 Rockwell Automation FactoryTalk Linx Vulnerable to Denial-of-Service and Information Disclosure

FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure. If the size is larg...

8.2CVSS9.1AI score0.09603EPSS
Exploits0References1
CVE
CVE
added 2023/10/13 12:57 p.m.71 views

CVE-2023-29464

CVE-2023-29464 affects Rockwell Automation’s FactoryTalk Linx (PanelView Plus). An unauthenticated actor can read memory by sending crafted packets whose size exceeds the internal buffer, causing information disclosure and, if large enough, a DoS on the common industrial protocol. Affected versio...

9.1CVSS8.6AI score0.09603EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/13 12:57 p.m.10 views

CVE-2023-29464 Rockwell Automation FactoryTalk Linx Vulnerable to Denial-of-Service and Information Disclosure

FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure. If the size is larg...

8.2CVSS6.6AI score0.09603EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/13 12:0 a.m.2 views

Rockwell Automation PanelView Plus 缓冲区错误漏洞

Rockwell Automation FactoryTalk Linx is a set of industrial communication solutions from Rockwell Rockwell Automation. It is used to communicate between small applications and large automation systems. Rockwell Automation FactoryTalk Linx has an input validation error vulnerability that can be...

9.1CVSS6.7AI score0.09603EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/10/12 12:0 a.m.2 views

PT-2023-6345 · Rockwell Automation · Factorytalk Linx

Name of the Vulnerable Software and Affected Versions: FactoryTalk Linx versions affected versions not specified Description: The issue allows an unauthenticated threat actor to read data from memory via crafted malicious packets, resulting in an information disclosure. If the size of the packet ...

9.1CVSS9.2AI score0.09603EPSS
Exploits0References11
NCSC
NCSC
added 2023/09/22 12:0 a.m.4 views

Vulnerability fixed in Rockwell Automation FactoryTalk

Rockwell has fixed a vulnerability in Factory Talk View Machine Edition. An unauthenticated malicious person could exploit the exploit the vulnerability to execute arbitrary code on the vulnerable system. For successful exploitation, the malicious party must have access to the production network...

9.8CVSS7.8AI score0.10974EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/09/21 12:0 a.m.9 views

The vulnerability of the software for creating and managing graphical user interfaces for Rockwell Automation FactoryTalk View Machine Edition (ME) devices stems from insufficient validation of input data. This vulnerability allows a perpetrator to execute arbitrary code.

The software used for creating and managing graphical user interfaces for Rockwell Automation FactoryTalk View Machine Edition industrial devices is vulnerable due to insufficient validation of input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS8.4AI score0.10974EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/09/12 2:15 p.m.3 views

CVE-2023-2071

Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted malicious packets. The device has the functionality, through a CIP class, to execute exported functions...

9.8CVSS6.1AI score0.10974EPSS
Exploits0References1
NVD
NVD
added 2023/09/12 2:15 p.m.29 views

CVE-2023-2071

Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted malicious packets. The device has the functionality, through a CIP class, to execute exported functions...

9.8CVSS9.9AI score0.10974EPSS
Exploits0References1
Prion
Prion
added 2023/09/12 2:15 p.m.15 views

Design/Logic Flaw

Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted malicious packets. The device has the functionality, through a CIP class, to execute exported functions...

7.5CVSS9.8AI score0.10974EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/12 1:12 p.m.10 views

CVE-2023-2071 FactoryTalk View Machine Edition Vulnerable to Remote Code Execution

Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted malicious packets. The device has the functionality, through a CIP class, to execute exported functions...

9.8CVSS8AI score0.10974EPSS
Exploits0References1
CVE
CVE
added 2023/09/12 1:12 p.m.68 views

CVE-2023-2071

CVE-2023-2071 affects Rockwell Automation FactoryTalk View Machine Edition on PanelView Plus. It describes improper input validation that lets an unauthenticated attacker achieve remote code execution by sending crafted packets; the device can execute exported functions via a CIP class, and an at...

9.8CVSS9.9AI score0.10974EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/12 12:0 a.m.4 views

PT-2023-5291 · Rockwell Automation · Factorytalk View Machine Edition

Name of the Vulnerable Software and Affected Versions: Rockwell Automation FactoryTalk View Machine Edition affected versions not specified Description: The issue arises from improper verification of user input, allowing an unauthenticated attacker to achieve remote code execution via crafted...

10CVSS7.9AI score0.10974EPSS
Exploits0References17
Rows per page
Query Builder