Known Vulnerabilities for Factorytalk Services Platform by Rockwellautomation
Listed below are 10 of the newest known vulnerabilities associated with "Factorytalk Services Platform" by "Rockwellautomation".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-46290 json | Due to inadequate code logic, a previously unauthenticated threat actor could potentially obtain a local Windows OS user tok... | 8.1 - HIGH | 2023-10-27 | 2023-11-07 |
| CVE-2021-32960 json | Rockwell Automation FactoryTalk Services Platform v6.11 and earlier, if FactoryTalk Security is enabled and deployed contains... | 8.8 - HIGH | 2022-04-01 | 2022-04-12 |
| CVE-2021-22681 json | Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to ve... | 9.8 - CRITICAL | 2021-03-03 | 2022-04-25 |
| CVE-2020-14516 json | In Rockwell Automation FactoryTalk Services Platform Versions 6.10.00 and 6.11.00, there is an issue with the implementation ... | 10 - CRITICAL | 2021-03-18 | 2021-03-26 |
| CVE-2020-14478 json | A local, authenticated attacker could use an XML External Entity (XXE) attack to exploit weakly configured XML files to acces... | 7.1 - HIGH | 2022-02-24 | 2022-03-04 |
| CVE-2020-12033 json | In Rockwell Automation FactoryTalk Services Platform, all versions, the redundancy host service (RdcyHost.exe) does not valid... | 8.8 - HIGH | 2020-06-23 | 2020-07-06 |
| CVE-2020-6967 json | In Rockwell Automation all versions of FactoryTalk Diagnostics software, a subsystem of the FactoryTalk Services Platform, Fa... | 9.8 - CRITICAL | 2020-03-23 | 2020-03-27 |
| CVE-2018-18981 json | In Rockwell Automation FactoryTalk Services Platform 2.90 and earlier, a remote unauthenticated attacker could send numerous ... | 7.5 - HIGH | 2019-01-24 | 2019-10-09 |
| CVE-2014-9209 json | Untrusted search path vulnerability in the Clean Utility application in Rockwell Automation FactoryTalk Services Platform bef... | 6.9 - MEDIUM | 2015-03-31 | 2015-03-31 |
| CVE-2012-4714 json | Integer overflow in RNADiagnostics.dll in Rockwell Automation FactoryTalk Services Platform (FTSP) CPR9, CPR9-SR1, CPR9-SR2, ... | 7.8 - HIGH | 2013-04-18 | 2013-04-18 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Rockwellautomation | Factorytalk Services Platform | cpr9 | |||
| Application | Rockwellautomation | Factorytalk Services Platform | cpr9 | |||
| Application | Rockwellautomation | Factorytalk Services Platform | cpr9 | |||
| Application | Rockwellautomation | Factorytalk Services Platform | cpr9 | |||
| Application | Rockwellautomation | Factorytalk Services Platform | cpr9 | |||
| Application | Rockwellautomation | Factorytalk Services Platform | cpr9 | |||
| Application | Rockwellautomation | Factorytalk Services Platform | cpr9 | |||
| Application | Rockwellautomation | Factorytalk Services Platform | cpr9 | |||
| Application | Rockwellautomation | Factorytalk Services Platform | - |