Vulnerabilidades en Rockwell Automation
274 resultadosCVE-2018-14827—Rockwell Automation RSLinx Classic Versions 4.00.01 and prior. A remote, unauthenticated threat actor may intentionally send specially craftEPSS 3.8%CVE-2021-27466CRITICALRockwell Automation FactoryTalk AssetCentre Deserialization of Untrusted DataEPSS 3.7%CVE-2021-27462CRITICALRockwell Automation FactoryTalk AssetCentre Deserialization of Untrusted DataEPSS 3.7%CVE-2021-27470CRITICALRockwell Automation FactoryTalk AssetCentre Deserialization of Untrusted DataEPSS 3.7%CVE-2023-3595CRITICALRockwell Automation ControlLogix Communication Modules Vulnerable to Remote Code ExecutionEPSS 3.6%CVE-2022-1159HIGHRockwell Automation Studio 5000 Logix Designer Code InjectionEPSS 3.4%CVE-2021-27468CRITICALRockwell Automation FactoryTalk AssetCentre SQL InjectionEPSS 3.4%CVE-2021-27464CRITICALRockwell Automation FactoryTalk AssetCentre SQL InjectionEPSS 3.3%CVE-2021-27460CRITICALRockwell Automation FactoryTalk AssetCentre Deserialization of Untrusted DataEPSS 3.1%CVE-2019-10955MEDIUMIn Rockwell Automation MicroLogix 1400 Controllers Series A, All Versions Series B, v15.002 and earlier, MicroLogix 1100 Controllers v14.00 EPSS 3.0%CVE-2023-0754CRITICAL
The affected products are vulnerable to an integer
overflow or wraparound, which could allow an attacker to crash the server and remotely
EPSS 2.9%CVE-2024-2425HIGHRockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527EPSS 2.8%CVE-2024-2426HIGHRockwell Automation - Denial-of-service and Input Validation Vulnerabilities in PowerFlex® 527EPSS 2.8%CVE-2021-27475HIGHRockwell Automation Connected Components Workbench Deserialization of Untrusted DataEPSS 2.8%CVE-2021-27471HIGHRockwell Automation Connected Components Workbench Path TraversalEPSS 2.7%CVE-2023-46290HIGHRockwell Automation FactoryTalk Services Platform Elevated Privileges VulnerabilityEPSS 2.7%CVE-2024-5988CRITICALRockwell Automation ThinManager® ThinServer™ Improper Input Validation VulnerabilityEPSS 2.7%CVE-2022-2463MEDIUMISaGRAF Workbench Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-22EPSS 2.6%CVE-2024-2424HIGHRockwell Automation Input/Output Device Vulnerable to Major Nonrecoverable FaultEPSS 2.6%CVE-2024-5989CRITICALRockwell Automation ThinManager® ThinServer™ Improper Input Validation VulnerabilityEPSS 2.4%