Lucene search

IcscertCVELIST:CVE-2021-32960

HistoryApr 01, 2022 - 10:17 p.m.

CVE-2021-32960 Rockwell Automation FactoryTalk Services Platform Protection Mechanism Failure

2022-04-0122:17:11

icscert

www.cve.org

rockwell automation

factorytalk

services platform

vulnerability

bypasses security policies

authenticated attacker

remote

computer name

privileges

CVSS3

8.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0.004

Percentile

73.4%

JSON

Rockwell Automation FactoryTalk Services Platform v6.11 and earlier, if FactoryTalk Security is enabled and deployed contains a vulnerability that may allow a remote, authenticated attacker to bypass FactoryTalk Security policies based on the computer name. If successfully exploited, this may allow an attacker to have the same privileges as if they were logged on to the client machine.

CNA Affected

[
  {
    "product": "FactoryTalk Services Platform",
    "vendor": "Rockwell Automation",
    "versions": [
      {
        "lessThan": "6.11",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131785

www.cisa.gov/uscert/ics/advisories/icsa-21-161-01

CVSS3

8.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.8

Confidence

High

EPSS

0.004

Percentile

73.4%

JSON

Related for CVELIST:CVE-2021-32960