Skip to main content

Factorytalk System Services

4 CVEs product

Monthly

CVE-2024-6326 LOW Monitor

An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. Rated low severity (CVSS 1.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Rockwell Factorytalk Policy Manager Factorytalk System Services
NVD
CVSS 4.0
1.8
EPSS
0.2%
CVE-2023-2639 MEDIUM This Month

The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that the. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Rockwell Information Disclosure Factorytalk Policy Manager Factorytalk System Services
NVD
CVSS 3.1
4.7
EPSS
0.4%
CVE-2023-2638 MEDIUM This Month

Rockwell Automation's FactoryTalk System Services does not verify that a backup configuration archive is password protected. Rated medium severity (CVSS 5.0), this vulnerability is low attack complexity. No vendor patch available.

Rockwell Authentication Bypass Factorytalk Policy Manager Factorytalk System Services
NVD
CVSS 3.1
5.0
EPSS
0.2%
CVE-2023-2637 HIGH This Week

Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Rockwell Factorytalk Policy Manager Factorytalk System Services
NVD
CVSS 3.1
8.2
EPSS
0.2%
EPSS 0% CVSS 1.8
LOW Monitor

An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. Rated low severity (CVSS 1.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Rockwell Factorytalk Policy Manager +1
NVD
EPSS 0% CVSS 4.7
MEDIUM This Month

The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that the. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Rockwell Information Disclosure Factorytalk Policy Manager +1
NVD
EPSS 0% CVSS 5.0
MEDIUM This Month

Rockwell Automation's FactoryTalk System Services does not verify that a backup configuration archive is password protected. Rated medium severity (CVSS 5.0), this vulnerability is low attack complexity. No vendor patch available.

Rockwell Authentication Bypass Factorytalk Policy Manager +1
NVD
EPSS 0% CVSS 8.2
HIGH This Week

Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Rockwell Factorytalk Policy Manager +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy