VYPR

FactoryTalk View Site Edition

by Rockwellautomation

CVEs (3)

  • CVE-2024-45824Sep 12, 2024
    risk 0.00cvss epss 0.01

    CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products. The vulnerability occurs when chained with Path Traversal, Command Injection, and XSS Vulnerabilities and allows for full unauthenticated remote code execution. The link in the mitigations…

  • CVE-2024-7513Aug 14, 2024
    risk 0.00cvss epss 0.02

    CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. The vulnerability occurs due to improper default file permissions allowing any user to edit or replace files, which are executed by account with elevated permissions.

  • CVE-2023-46289Oct 27, 2023
    risk 0.00cvss epss 0.01

    Rockwell Automation FactoryTalk View Site Edition insufficiently validates user input, which could potentially allow threat actors to send malicious data bringing the product offline. If exploited, the product would become unavailable and require a restart to recover resulting…