Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rockwellautomation factorytalk policy manager 6.11.0 vulnerabilities and exploits
(subscribe to this query)
8.2
CVSSv3
CVE-2023-2637
Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies. Hard-coded cryptographic key may lead to privilege escalation. This vulnerability may allow a local, authenticated non-admin user to generate an invalid ...
Rockwellautomation Factorytalk System Services 6.11.0
Rockwellautomation Factorytalk Policy Manager 6.11.0
5
CVSSv3
CVE-2023-2638
Rockwell Automation's FactoryTalk System Services does not verify that a backup configuration archive is password protected. Improper authorization in FTSSBackupRestore.exe may lead to the loading of malicious configuration archives. This vulnerability may allow a local, au...
Rockwellautomation Factorytalk System Services 6.11.0
Rockwellautomation Factorytalk Policy Manager 6.11.0
4.7
CVSSv3
CVE-2023-2639
The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that the origin of the communication is from a legitimate local client device. This m...
Rockwellautomation Factorytalk System Services 6.11.0
Rockwellautomation Factorytalk Policy Manager 6.11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started