ICSA-22-279-01
·
Published 2022-10-06
·
View on CISA ICS-CERT ↗
Rockwell Automation FactoryTalk VantagePoint
CVSS 9.9
CRITICAL
Risk Summary
Successful exploitation of these vulnerabilities could allow remote code execution.
CVEs (2)
Remediations
- FactoryTalk VantagePoint: Update firmware to v8.0
- FactoryTalk VantagePoint: Update firmware to v8.10
- FactoryTalk VantagePoint: Update firmware to v8.20
- FactoryTalk VantagePoint: Update firmware to v8.30
- FactoryTalk VantagePoint: Update firmware to v8.31
- If users are unable to update the firmware, Rockwell Automation suggests configuring the database to follow the least privilege principle.
- For more information, users should see Rockwell Automation's Security advisory.
Affected Vendors
Rockwell Automation
Affected Products (5)
Rockwell Automation
·
FactoryTalk VantagePoint software
< 8.0
Rockwell Automation
·
FactoryTalk VantagePoint software
>= 8.0 |<= 8.10
Rockwell Automation
·
FactoryTalk VantagePoint software
>=8.10 | <= 8.20
Rockwell Automation
·
FactoryTalk VantagePoint software
>= 8.20 | <= 8.30
Rockwell Automation
·
FactoryTalk VantagePoint software
>= 8.30 | <= 8.31
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more