A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODE_ENV to ‘development’, the attacker can disable FTSP token validation. This bypass allows access to create, update, and delete FTLinx drivers.
oryginał ENCVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XRockwellautomation Factorytalk Linx
APPRockwellautomation< 6.50
Powiązane podatności
A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. This vulnerability could ...
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workben...
A security issue exists within the x86 Microsoft Installer File (MSI), installed with FTLinx. Authenticated at...
A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File (MSI) repai...
FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read d...