CVE-2021-27476 in FactoryTalk AssetCentreالمعلومات

الملخص

بحسب MITRE • 24/03/2022

A vulnerability exists in the SaveConfigFile function of the RACompare Service, which may allow for OS command injection. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

مسؤول

ICS-CERT

حجز

19/02/2021

إفشاء

24/03/2022

الاعتدال

تمت الموافقة

إدخال

VDB-195678

EPSS

0.04271

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you know our Splunk app?

Download it now for free!