exploitDog

GHSA-v82x-2c2x-rwj8

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

In Rockwell Automation FactoryTalk Services Platform, all versions, the redundancy host service (RdcyHost.exe) does not validate supplied identifiers, which could allow an unauthenticated, adjacent attacker to execute remote COM objects with elevated privileges.

In Rockwell Automation FactoryTalk Services Platform, all versions, the redundancy host service (RdcyHost.exe) does not validate supplied identifiers, which could allow an unauthenticated, adjacent attacker to execute remote COM objects with elevated privileges.

Ссылки

EPSS

Процентиль: 81%

0.01617

Низкий

CVE ID

Связанные уязвимости

CVE-2020-12033

CVSS3: 8.8

nvd

больше 5 лет назад

In Rockwell Automation FactoryTalk Services Platform, all versions, the redundancy host service (RdcyHost.exe) does not validate supplied identifiers, which could allow an unauthenticated, adjacent attacker to execute remote COM objects with elevated privileges.

BDU:2025-07153

CVSS3: 8.8

fstec

около 6 лет назад

Уязвимость службы Redundancy Host Service (RdcyHost.exe) платформы управления производственными процессами FactoryTalk Services Platform, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код

EPSS

Процентиль: 81%

0.01617

Низкий

CVE ID