VYPR

FactoryTalk Policy Manager

by Rockwellautomation

CVEs (3)

  • CVE-2024-6326Jul 16, 2024
    risk 0.00cvss epss 0.00

    An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A malicious user could exploit this vulnerability by starting a back-up or restore process, which temporarily exposes private keys, passwords, pre-shared keys, and…

  • CVE-2024-6325Jul 16, 2024
    risk 0.00cvss epss 0.00

    The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html  and CVE-2022-1161 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advis…

  • CVE-2023-2637Jun 13, 2023
    risk 0.00cvss epss 0.00

    Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies.  Hard-coded cryptographic key may lead to privilege escalation.  This vulnerability may allow a local, authenticated non-admin user to generate an invalid…