exploitDog

CVE-2014-5424

Опубликовано: 14 нояб. 2014

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an invalid property value to an ActiveX control that was built with an outdated compiler.

Ссылки

https://ics-cert.us-cert.gov/advisories/ICSA-14-294-01
Third Party Advisory
US Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-14-294-01
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rockwellautomation:connected_components_workbench:*:*:*:*:*:*:*:*

Версия до 6.01.00 (включая)

EPSS

Процентиль: 52%

0.00292

Низкий

7.5 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-6659-x339-g68g

github

больше 3 лет назад

Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an invalid property value to an ActiveX control that was built with an outdated compiler.

EPSS

Процентиль: 52%

0.00292

Низкий

7.5 High

CVSS2

Дефекты

CWE-264