4/7/2024 0 Comments Softlogix 5800 v20![]() ![]() Studio 5000 Logix Designer uses a key to verify Logix controllers are communicating with the affected Rockwell Automation products. The following Rockwell Logix Controllers are affected:Ĥ.2 VULNERABILITY OVERVIEW 4.2.1 INSUFFICIENTLY PROTECTED CREDENTIALS CWE-522 FactoryTalk Security, part of the FactoryTalk Services Platform, if configured and deployed v2.10 and later.Studio 5000 Logix Designer: Versions 21 and later.The following versions of Rockwell software are affected: ![]() Additionally, this vulnerability could enable an unauthorized third-party tool to alter the controller’s configuration and/or application code. Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to bypass the verification mechanism and connect with Logix controllers. This updated advisory is a follow-up to the original advisory titled ICSA-21-056-03 Rockwell Automation Logix Controllers that was published February 25, 2021, to the ICS webpage on. Vulnerability: Insufficiently Protected Credentials.Equipment: Studio 5000 Logix Designer, RSLogix 5000, Logix Controllers.ATTENTION: Exploitable remotely/low skill level to exploit. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |