Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rockwellautomation vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-27855
In affected versions, a path traversal exists when processing a message in Rockwell Automation's ThinManager ThinServer. An unauthenticated remote attacker could potentially exploit this vulnerability to upload arbitrary files to any directory on the disk drive where ThinSe...
Rockwellautomation Thinmanager
Rockwellautomation Thinmanager 13.0.0
Rockwellautomation Thinmanager 13.0.1
7.5
CVSSv3
CVE-2023-27856
In affected versions, path traversal exists when processing a message of type 8 in Rockwell Automation's ThinManager ThinServer. An unauthenticated remote attacker can exploit this vulnerability to download arbitrary files on the disk drive where ThinServer.exe is installed...
Rockwellautomation Thinmanager
Rockwellautomation Thinmanager 13.0.0
Rockwellautomation Thinmanager 13.0.1
8.8
CVSSv3
CVE-2022-38743
Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable to an improper access control vulnerability. The FactoryTalk VantagePoint SQL Server account could allow a malicious user with read-only privileges to execute SQL statements in the ba...
Rockwellautomation Factorytalk Vantagepoint 8.0
Rockwellautomation Factorytalk Vantagepoint 8.10
Rockwellautomation Factorytalk Vantagepoint 8.20
Rockwellautomation Factorytalk Vantagepoint 8.30
Rockwellautomation Factorytalk Vantagepoint 8.31
8.8
CVSSv3
CVE-2022-3158
Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable to an input validation vulnerability. The FactoryTalk VantagePoint SQL Server lacks input validation when users enter SQL statements to retrieve information from the back-end database...
Rockwellautomation Factorytalk Vantagepoint 8.0
Rockwellautomation Factorytalk Vantagepoint 8.10
Rockwellautomation Factorytalk Vantagepoint 8.20
Rockwellautomation Factorytalk Vantagepoint 8.30
Rockwellautomation Factorytalk Vantagepoint 8.31
7.5
CVSSv3
CVE-2020-12003
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx Comm...
Rockwellautomation Factorytalk Linx 6.00
Rockwellautomation Factorytalk Linx 6.10
Rockwellautomation Factorytalk Linx 6.11
Rockwellautomation Rslinx Classic
8.1
CVSSv3
CVE-2020-11999
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx Comm...
Rockwellautomation Factorytalk Linx 6.00
Rockwellautomation Factorytalk Linx 6.10
Rockwellautomation Factorytalk Linx 6.11
Rockwellautomation Rslinx Classic
9.8
CVSSv3
CVE-2020-12001
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx Comm...
Rockwellautomation Factorytalk Linx 6.00
Rockwellautomation Factorytalk Linx 6.10
Rockwellautomation Factorytalk Linx 6.11
Rockwellautomation Rslinx Classic
7.5
CVSSv3
CVE-2020-12005
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx Comm...
Rockwellautomation Factorytalk Linx 6.00
Rockwellautomation Factorytalk Linx 6.10
Rockwellautomation Factorytalk Linx 6.11
Rockwellautomation Rslinx Classic
7.5
CVSSv3
CVE-2023-3596
Where this vulnerability exists in the Rockwell Automation 1756-EN4* Ethernet/IP communication products, it could allow a malicious user to cause a denial of service by asserting the target system through maliciously crafted CIP messages.
Rockwellautomation 1756-en4tr Firmware -
Rockwellautomation 1756-en4trk Firmware -
Rockwellautomation 1756-en4trxt Firmware -
7.5
CVSSv3
CVE-2024-21916
A denial-of-service vulnerability exists in specific Rockwell Automation ControlLogix ang GuardLogix controllers. If exploited, the product could potentially experience a major nonrecoverable fault (MNRF). The device will restart itself to recover from the MNRF.
Rockwellautomation Controllogix 5570 Controller Firmware 20.011
Rockwellautomation Guardlogix 5570 Controller Firmware 20.011
Rockwellautomation Controllogix 5570 Redundant Controller Firmware 20.054 Kit1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »