exploitDog

GHSA-cg2f-j69h-xcx2

Опубликовано: 24 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier does not properly restrict all functions relating to IIS remoting services. This vulnerability may allow a remote, unauthenticated attacker to modify sensitive data in FactoryTalk AssetCentre.

Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier does not properly restrict all functions relating to IIS remoting services. This vulnerability may allow a remote, unauthenticated attacker to modify sensitive data in FactoryTalk AssetCentre.

Ссылки

EPSS

Процентиль: 26%

0.00094

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2021-27474

CVSS3: 10

nvd

почти 4 года назад

Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier does not properly restrict all functions relating to IIS remoting services. This vulnerability may allow a remote, unauthenticated attacker to modify sensitive data in FactoryTalk AssetCentre.

EPSS

Процентиль: 26%

0.00094

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-863