Lucene search
K

16 matches found

NVD
NVD
added 2026/02/05 12:15 a.m.7 views

CVE-2019-25276

Studio 5000 Logix Designer 30.01.00 contains an unquoted service path vulnerability in the FactoryTalk Activation Service that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\Rockwell Software\FactoryTalk...

8.5CVSS0.0019EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/04 11:15 p.m.31 views

CVE-2019-25276 Studio 5000 Logix Designer 30.01.00 - 'FactoryTalk Activation Service' Unquoted Service Path

Studio 5000 Logix Designer 30.01.00 contains an unquoted service path vulnerability in the FactoryTalk Activation Service that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\Rockwell Software\FactoryTalk...

8.5CVSS0.0019EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-24503

Malicious code in bioql PyPI...

10CVSS9.2AI score0.05013EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/14 3:2 p.m.32 views

CVE-2025-7971 Studio 5000 Logix Designer® – Arbitrary Code Execution Vulnerability

A security issues exists within Studio 5000 Logix Designer due to unsafe handling of environment variables. If the specified path lacks a valid file, Logix Designer crashes; However, it may be possible to execute malicious code without triggering a crash...

7.3CVSS0.00115EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/12/27 6:17 p.m.17 views

CVE-2022-3156 Rockwell Automation Studio 5000 Logix Emulate Vulnerable to a Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Rockwell Automation Studio 5000 Logix Emulate software. Users are granted elevated permissions on certain product services when the software is installed. Due to this misconfiguration, a malicious user could potentially achieve remote code execution...

7.8CVSS8.1AI score0.00368EPSS
Exploits0References1
CVE
CVE
added 2022/12/27 6:17 p.m.51 views

CVE-2022-3156

CVE-2022-3156 affects Rockwell Automation Studio 5000 Logix Emulate, specifically versions around v.20-33. The root cause is improper access control (CWE-284) that grants elevated permissions on certain product services, potentially enabling remote code execution. The advisory notes a CVSS v3 bas...

7.8CVSS7.9AI score0.00368EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2022/12/22 12:0 a.m.51 views

Rockwell Automation Studio 5000 Logix Emulate

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Rockwell Automation Equipment: Studio 5000 Logix Emulate Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a malicious user to perform remote code execution,...

7.8CVSS8.1AI score0.00368EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/04/28 12:0 a.m.58 views

Rockwell Automation Studio 5000 Logix Designer Improper Control of Generation of Code (CVE-2022-1159)

Rockwell Automation Studio 5000 Logix Designer all versions are vulnerable when an attacker who achieves administrator access on a workstation running Studio 5000 Logix Designer could inject controller code undetectable to a user. This plugin only works with Tenable.ot. Please visit...

7.7CVSS7.3AI score0.03398EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/04/11 7:38 p.m.84 views

CVE-2022-1161 ICSA-22-090-05 Rockwell Automation Logix Controllers

An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix Control systems. Studio 5000 Logix Designer writes user-readable program code to a separate location than the executed compiled code, allowing an attacker to chang...

10CVSS9.6AI score0.05013EPSS
Exploits0References1
CVE
CVE
added 2022/04/11 7:38 p.m.173 views

CVE-2022-1161

CVE-2022-1161 affects Rockwell Automation’s Logix platforms (ControlLogix, CompactLogix, GuardLogix) via Studio 5000 Logix Designer. The root cause is that Studio 5000 writes user‑readable program code to a separate location from the executed compiled code, enabling an attacker to modify one copy...

10CVSS8.1AI score0.05013EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/04/01 11:15 p.m.35 views

Code injection

Rockwell Automation Studio 5000 Logix Designer all versions are vulnerable when an attacker who achieves administrator access on a workstation running Studio 5000 Logix Designer could inject controller code undetectable to a user...

6.5CVSS6.9AI score0.03398EPSS
Exploits0References1
NVD
NVD
added 2020/06/15 8:15 p.m.23 views

CVE-2020-12003

FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 an...

7.5CVSS0.0523EPSS
Exploits0References1
Prion
Prion
added 2020/06/15 8:15 p.m.15 views

Code injection

FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 an...

5.5CVSS8.5AI score0.02805EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2020/06/15 8:15 p.m.19 views

Code injection

FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 an...

7.5CVSS9.6AI score0.11503EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2020/05/20 3:15 a.m.19 views

Race condition

Products that use EDS Subsystem: Version 28.0.1 and prior FactoryTalk Linx software Previously called RSLinx Enterprise: Versions 6.00, 6.10, and 6.11, RSLinx Classic: Version 4.11.00 and prior, RSNetWorx software: Version 28.00.00 and prior, Studio 5000 Logix Designer software: Version 32 and...

4.8CVSS8.2AI score0.01263EPSS
Exploits0References1Affected Software5
Prion
Prion
added 2020/05/19 10:15 p.m.23 views

Memory corruption

Products that use EDS Subsystem: Version 28.0.1 and prior FactoryTalk Linx software Previously called RSLinx Enterprise: Versions 6.00, 6.10, and 6.11, RSLinx Classic: Version 4.11.00 and prior, RSNetWorx software: Version 28.00.00 and prior, Studio 5000 Logix Designer software: Version 32 and...

4.3CVSS6.3AI score0.02511EPSS
Exploits1References1Affected Software5
Rows per page
Query Builder