Skip to main content

Factorytalk View

14 CVEs product

Monthly

CVE-2024-37365 HIGH This Week

A remote code execution vulnerability exists in the affected product. Rated high severity (CVSS 7.0), this vulnerability is low attack complexity. No vendor patch available.

RCE Factorytalk View
NVD
CVSS 4.0
7.0
EPSS
0.2%
CVE-2024-45824 CRITICAL Act Now

CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products. Rated critical severity (CVSS 9.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Path Traversal XSS Command Injection Factorytalk View
NVD
CVSS 4.0
9.2
EPSS
1.3%
CVE-2024-7513 HIGH This Week

CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. No vendor patch available.

RCE Factorytalk View
NVD
CVSS 4.0
8.5
EPSS
1.7%
CVE-2024-37369 HIGH This Week

A privilege escalation vulnerability exists in the affected product. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Factorytalk View
NVD
CVSS 4.0
8.5
EPSS
0.3%
CVE-2024-37368 HIGH This Week

A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Rockwell Factorytalk View
NVD
CVSS 4.0
8.2
EPSS
0.5%
CVE-2024-37367 HIGH This Week

A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE v12. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Rockwell Factorytalk View
NVD
CVSS 4.0
8.2
EPSS
0.5%
CVE-2024-4609 HIGH This Week

A vulnerability exists in the Rockwell Automation FactoryTalk® View SE Datalog function that could allow a threat actor to inject a malicious SQL statement if the SQL database has no authentication. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Rockwell Factorytalk View
NVD
CVSS 4.0
8.8
EPSS
0.7%
CVE-2024-21914 MEDIUM This Month

A vulnerability exists in the affected product that allows a malicious user to restart the Rockwell Automation PanelView™ Plus 7 terminal remotely without security protections. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Rockwell Denial Of Service Factorytalk View
NVD
CVSS 3.1
5.3
EPSS
0.7%
CVE-2023-46289 HIGH This Week

Rockwell Automation FactoryTalk View Site Edition insufficiently validates user input, which could potentially allow threat actors to send malicious data bringing the product offline. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Rockwell Information Disclosure Factorytalk View
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2023-2071 CRITICAL Act Now

Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Rockwell Authentication Bypass Factorytalk View
NVD
CVSS 3.1
9.8
EPSS
11.0%
CVE-2020-12031 HIGH This Week

In all versions of FactoryTalk View SE, after bypassing memory corruption mechanisms found in the operating system, a local, authenticated attacker may corrupt the associated memory space allowing. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Rockwell RCE Factorytalk View
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2020-12028 HIGH POC THREAT Act Now

In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize certain handlers to interact with the data on the remote endpoint since those handlers do not enforce. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Rockwell Privilege Escalation Factorytalk View
NVD
CVSS 3.1
8.1
EPSS
51.0%
CVE-2020-12027 MEDIUM POC THREAT This Month

All versions of FactoryTalk View SE disclose the hostnames and file paths for certain files within the system. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Rockwell Information Disclosure Factorytalk View
NVD GitHub
CVSS 3.1
4.3
EPSS
53.0%
CVE-2020-12029 HIGH POC THREAT Act Now

All versions of FactoryTalk View SE do not properly validate input of filenames within a project directory. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Rockwell RCE Factorytalk View
NVD
CVSS 3.1
7.8
EPSS
45.0%
EPSS 0% CVSS 7.0
HIGH This Week

A remote code execution vulnerability exists in the affected product. Rated high severity (CVSS 7.0), this vulnerability is low attack complexity. No vendor patch available.

RCE Factorytalk View
NVD
EPSS 1% CVSS 9.2
CRITICAL Act Now

CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products. Rated critical severity (CVSS 9.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Path Traversal XSS +2
NVD
EPSS 2% CVSS 8.5
HIGH This Week

CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. No vendor patch available.

RCE Factorytalk View
NVD
EPSS 0% CVSS 8.5
HIGH This Week

A privilege escalation vulnerability exists in the affected product. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Factorytalk View
NVD
EPSS 0% CVSS 8.2
HIGH This Week

A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Rockwell Factorytalk View
NVD
EPSS 0% CVSS 8.2
HIGH This Week

A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE v12. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Rockwell Factorytalk View
NVD
EPSS 1% CVSS 8.8
HIGH This Week

A vulnerability exists in the Rockwell Automation FactoryTalk® View SE Datalog function that could allow a threat actor to inject a malicious SQL statement if the SQL database has no authentication. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Rockwell Factorytalk View
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

A vulnerability exists in the affected product that allows a malicious user to restart the Rockwell Automation PanelView™ Plus 7 terminal remotely without security protections. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Rockwell Denial Of Service Factorytalk View
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Rockwell Automation FactoryTalk View Site Edition insufficiently validates user input, which could potentially allow threat actors to send malicious data bringing the product offline. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Rockwell Information Disclosure Factorytalk View
NVD
EPSS 11% CVSS 9.8
CRITICAL Act Now

Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Rockwell Authentication Bypass Factorytalk View
NVD
EPSS 1% CVSS 7.8
HIGH This Week

In all versions of FactoryTalk View SE, after bypassing memory corruption mechanisms found in the operating system, a local, authenticated attacker may corrupt the associated memory space allowing. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Rockwell RCE +1
NVD
EPSS 51% CVSS 8.1
HIGH POC THREAT Act Now

In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize certain handlers to interact with the data on the remote endpoint since those handlers do not enforce. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Rockwell Privilege Escalation Factorytalk View
NVD
EPSS 53% CVSS 4.3
MEDIUM POC THREAT This Month

All versions of FactoryTalk View SE disclose the hostnames and file paths for certain files within the system. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Rockwell Information Disclosure Factorytalk View
NVD GitHub
EPSS 45% CVSS 7.8
HIGH POC THREAT Act Now

All versions of FactoryTalk View SE do not properly validate input of filenames within a project directory. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Rockwell RCE Factorytalk View
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy