Rockwell Automation recommends users apply the latest update: COMPANY HEADQUARTERS LOCATION: United StatesĬlaroty and Cognite reported this vulnerability to Rockwell Automation.CRITICAL INFRASTRUCTURE SECTORS: Food and Agriculture, Transportation Systems, Water and Wastewater Systems.A CVSS v3 base score of 7.5 has been calculated the CVSS vector string is ( AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H). Drives AOP v4.12 and below (supports Logix Versions v16-v30)ģ.2 VULNERABILITY OVERVIEW 3.2.1 UNCONTROLLED SEARCH PATH ELEMENT CWE-427ĭriveTools and Drives AOP both contain a vulnerability that a local attacker with limited privileges may be able to exploit resulting in privilege escalation and complete control of the system.ĬVE-2021-22665 has been assigned to this vulnerability. Rockwell Automation reports the vulnerability affects the following products: Successful exploitation of this vulnerability may result in privilege escalation and total loss of device confidentiality, integrity, and availability.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |