ICSA-20-170-05 · Published 2020-06-18 · View on CISA ICS-CERT ↗

Rockwell Automation FactoryTalk View SE

CVSS 9.0 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities may allow a remote authenticated attacker to manipulate data of affected devices.

CVE-2020-12029 CVE-2020-12031 CVE-2020-12028 CVE-2020-12027

Rockwell Automation has released new versions of the affected products to mitigate the reported vulnerabilities. Affected users who are not able to apply the latest update are encouraged to seek additional mitigations or workarounds from the vendor's published guidelines in their security advisory.
For CVE-2020-12029 Rockwell Automation recommends applying patch 1126289. Before installing this patch, the patch rollup dated 06 Apr 2020 or later MUST be applied. 1066644 - Patch Roll-up for CPR9 SRx.
For CVE-2020-12031 Rockwell Automation recommends applying patch 1126290. Before installing this patch, the patch rollup dated 06 Apr 2020 or later MUST be applied. 1066644 - Patch Roll-up for CPR9 SRx.
For CVE-2020-12028 and CVE-2020-12027 Rockwell Automation recommends enabling built in security features found within FactoryTalk View SE. Users should follow guidance found in knowledge base articles 109056 and 1126943 to set up IPSec and/or HTTPs.

Rockwell Automation

Rockwell Automation · FactoryTalk View SE vers:all/*

Chemical, Commercial Facilities, Critical Manufacturing, Energy, Government Facilities, Water and Wastewater Systems

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.