Lucene search
+L

6 matches found

BDU FSTEC
BDU FSTEC
added 2024/10/02 12:0 a.m.8 views

The vulnerability of the Rockwell Automation Pavilion8 platform for simulation, control, and optimization, related to insecure privilege management, allows a intruder to gain unauthorized access to arbitrary functions.

The vulnerability of the Rockwell Automation Pavilion8 platform for simulation, control, and optimization is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to gain unauthorized access to arbitrary functions...

8CVSS5.6AI score0.00452EPSS
Exploits0References2Affected Software1
ICS
ICS
added 2024/09/12 6:0 a.m.22 views

Rockwell Automation Pavilion8

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Rockwell Automation Equipment : Pavilion8 Vulnerabilities : Improper Privilege Management, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...

9.8CVSS10AI score0.00956EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/08/14 7:58 p.m.10 views

CVE-2024-40620 Rockwell Automation Pavilion8® Unencrypted Data Vulnerability via HTTP protocol

CVE-2024-40620 IMPACT A vulnerability exists in the affected product due to lack of encryption of sensitive information. The vulnerability results in data being sent between the Console and the Dashboard without encryption, which can be seen in the logs of proxy servers, potentially impacting the...

5.3CVSS7AI score0.00186EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/14 7:58 p.m.26 views

CVE-2024-40620 Rockwell Automation Pavilion8® Unencrypted Data Vulnerability via HTTP protocol

CVE-2024-40620 IMPACT A vulnerability exists in the affected product due to lack of encryption of sensitive information. The vulnerability results in data being sent between the Console and the Dashboard without encryption, which can be seen in the logs of proxy servers, potentially impacting the...

5.3CVSS0.00186EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/16 12:0 a.m.5 views

Rockwell Automation Pavilion8 安全漏洞

Rockwell Automation Pavilion8 is a model prediction console from Rockwell Automation. An elevation of privilege vulnerability exists in Rockwell Automation Pavilion 8, which can be exploited by an attacker to read sensitive data and create users...

8.8CVSS6.9AI score0.00488EPSS
Exploits0References2
CVE
CVE
added 2023/09/12 4:42 p.m.52 views

CVE-2023-29463

The CVE-2023-29463 issue affects Rockwell Automation Pavilion8: the JMX Console is publicly accessible and requires no authentication, enabling a malicious user to retrieve other users’ session data or log them out. Affected product: Pavilion8 (model predictive control software); affected version...

8.8CVSS5.9AI score0.00777EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder