Rockwell Automation ISaGRAF

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to pass local file data to a remote web server, leading to loss of confidentiality.

CVEs (1)

Remediations

• Connected Component Workbench: Update to v13.00
• ISaGRAF Workbench: Update to 6.6.10
• ISaGRAF Workbench: For now, use mitigations listed until a patch is released. More mitigation actions are planned.
• Safety Instrumented Systems Workstation: Update to v1.2
• Run Connected Components Workbench as a User, not as an Administrator, to minimize the impact of malicious code on the infected system.
• Do not open untrusted files with Connected Component Workbench, ISaGRAF, SISW. Employ training and awareness programs to educate users on the warning signs of a phishing or social engineering attack.
• Use Microsoft AppLocker or other similar allow list application to help mitigate risk. Information on using AppLocker with Rockwell Automation products is available at KnowledgeBase Article QA17329
• Ensure the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.
• For more information see Rockwell Automation's security advisory.

Affected Vendors

Affected Products (4)

Affected Sectors

Multiple Sectors