The vulnerability of the LogService.rem service in the FactoryTalk AssetCentre software platform allows a perpetrator to execute arbitrary commands.

The vulnerability of the LogService.rem service in the FactoryTalk AssetCentre centralized asset management software is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary commands...

CVE-2021-27470

A deserialization vulnerability exists in how the LogService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier verifies serialized data. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands in FactoryTalk AssetCentre...

Deserialization of untrusted data

A deserialization vulnerability exists in how the LogService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier verifies serialized data. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands in FactoryTalk AssetCentre...

CVE-2021-27470

Rockwell Automation FactoryTalk AssetCentre before version 11 is affected by a deserialization vulnerability in the LogService.rem component that allows remote, unauthenticated command execution. Affected product: FactoryTalk AssetCentre v10.00 and earlier. Root cause: improper deserialization/ve...