Описание
A security issue exists within FactoryTalk Optix MQTT broker due to the lack of URI sanitization. This flaw enables the loading of remote Mosquito plugins, which can be used to achieve remote code execution.
Уязвимые конфигурации
Конфигурация 1Версия от 1.5.0 (включая) до 1.6.0 (исключая)
cpe:2.3:a:rockwellautomation:factorytalk_optix:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00044
Низкий
8.8 High
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 8.8
github
5 месяцев назад
A security issue exists within FactoryTalk Optix MQTT broker due to the lack of URI sanitization. This flaw enables the loading of remote Mosquito plugins, which can be used to achieve remote code execution.
EPSS
Процентиль: 13%
0.00044
Низкий
8.8 High
CVSS3
Дефекты
CWE-77