CVE-2026-10714 in FactoryTalk Services Platforminfo

Summary

by MITRE • 07/14/2026

A security issue exists within FactoryTalk® Services Platform (FTSP), allowing an attacker to bypass JWT signature validation during Okta Web Authentication. The vulnerability stems from the application not verifying that the JWT algorithm is configured for RSA, enabling an attacker to set the algorithm to "none" and craft forged tokens. This could allow an authenticated low-privilege user to impersonate any authorized user on the FTSP server, resulting in unauthorized access to system configuration and the ability to grant permissions to other systems protected by FTSP.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Analysis

by VulDB Data Team • 07/14/2026

This vulnerability within FactoryTalk Services Platform represents a critical authentication bypass flaw that directly undermines the security posture of industrial control systems. The issue manifests when the platform fails to properly validate JSON Web Token (JWT) signatures during Okta web authentication processes, creating a pathway for malicious actors to manipulate authentication tokens. The root cause lies in the application's insufficient validation of JWT algorithm configurations, specifically its failure to verify that the token algorithm is properly set for RSA encryption. This oversight allows attackers to exploit the system by manipulating the token header to specify an algorithm of "none" instead of the expected RSA algorithm, effectively disabling signature verification mechanisms.

The technical implications of this vulnerability extend beyond simple authentication bypass, as it enables a low-privilege authenticated user to escalate their privileges and assume the identity of any authorized user within the FTSP environment. This type of flaw aligns with CWE-347, which addresses improper validation of cryptographic signatures, and represents a classic example of weak cryptographic implementation that directly violates security best practices. The vulnerability creates a pathway for privilege escalation attacks where an attacker can craft forged tokens without proper authorization, potentially leading to complete system compromise.

The operational impact of this vulnerability is particularly severe in industrial environments where FactoryTalk Services Platform serves as a critical component for system configuration management and access control. An attacker who successfully exploits this vulnerability gains the ability to access sensitive system configurations and manipulate permissions across interconnected systems that rely on FTSP for authentication services. This creates cascading security risks where compromise of a single platform can lead to unauthorized access across multiple industrial control systems, potentially affecting operational technology infrastructure and creating opportunities for broader network infiltration.

Security mitigations should focus on implementing proper JWT validation mechanisms that enforce algorithm checking and signature verification protocols. Organizations must ensure that all JWT implementations validate the token algorithm against expected values and reject tokens with insecure configurations such as "none" algorithms. The solution involves updating the FTSP authentication module to enforce strict cryptographic validation, implementing proper certificate management for RSA key validation, and establishing robust monitoring for anomalous authentication patterns. Additionally, implementing principle of least privilege access controls and multi-factor authentication mechanisms can provide additional layers of protection against exploitation attempts.

This vulnerability demonstrates the importance of adhering to established security frameworks such as those outlined in the MITRE ATT&CK framework, specifically addressing techniques related to credential access and privilege escalation. The flaw represents a critical weakness that could be leveraged by attackers to establish persistent access within industrial environments, making it essential for organizations to implement comprehensive security testing and validation procedures for authentication mechanisms in operational technology systems. Organizations should also consider implementing automated vulnerability scanning tools that can detect insecure JWT configurations and ensure compliance with industry standards for secure authentication implementation.

Responsible

Rockwell

Reservation

06/02/2026

Disclosure

07/14/2026

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

very low

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!