Skip to main content

Connected Components Workbench

3 CVEs product

Monthly

CVE-2022-1018 MEDIUM PATCH This Month

When opening a malicious solution file provided by an attacker, the application suffers from an XML external entity vulnerability due to an unsafe call within a dynamic link library file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This XML External Entity (XXE) vulnerability could allow attackers to read arbitrary files or perform SSRF through XML processing.

XXE Connected Components Workbench Isagraf Safety Instrumented Systems Workstation
NVD
CVSS 3.1
5.5
EPSS
2.1%
CVE-2017-5176 HIGH PATCH This Week

A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW). Rated high severity (CVSS 7.0), this vulnerability is no authentication required.

Rockwell Information Disclosure Connected Components Workbench
NVD
CVSS 3.0
7.0
EPSS
0.0%
CVE-2014-5424 HIGH This Week

Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an invalid. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Rockwell Privilege Escalation RCE Connected Components Workbench
NVD
CVSS 2.0
7.5
EPSS
0.4%
EPSS 2% CVSS 5.5
MEDIUM PATCH This Month

When opening a malicious solution file provided by an attacker, the application suffers from an XML external entity vulnerability due to an unsafe call within a dynamic link library file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This XML External Entity (XXE) vulnerability could allow attackers to read arbitrary files or perform SSRF through XML processing.

XXE Connected Components Workbench Isagraf +1
NVD
EPSS 0% CVSS 7.0
HIGH PATCH This Week

A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW). Rated high severity (CVSS 7.0), this vulnerability is no authentication required.

Rockwell Information Disclosure Connected Components Workbench
NVD
EPSS 0% CVSS 7.5
HIGH This Week

Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an invalid. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Rockwell Privilege Escalation +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy