VYPR

Rockwell Automation

by Rockwellautomation

CVEs (2)

  • CVE-2024-7961CriSep 12, 2024
    risk 0.64cvss 9.8epss 0.01

    A path traversal vulnerability exists in the Rockwell Automation affected product. If exploited, the threat actor could upload arbitrary files to the server that could result in a remote code execution.

  • CVE-2024-8533HigSep 12, 2024
    risk 0.57cvss 8.8epss 0.01

    A privilege escalation vulnerability exists in the Rockwell Automation affected products. The vulnerability occurs due to improper default file permissions allowing users to exfiltrate credentials and escalate privileges.