ICSA-23-264-05
·
Published 2023-09-21
·
View on CISA ICS-CERT ↗
Rockwell Automation Connected Components Workbench
CVSS 9.6
CRITICAL
CISA KEV — Known Exploited
Risk Summary
Successful exploitation of these vulnerabilities could allow an attacker to exploit heap corruption via a crafted HTML.
Remediations
- Rockwell Automation recommends users to update Connected Components Workbench to R21 and later.
- Customers using the affected software are encouraged to apply the risk mitigations, if possible.
- Additionally, Rockwell Automation encourages customers to implement their suggested security best practices to minimize the risk of vulnerability.
- Security Best Practices
Affected Vendors
Rockwell Automation
Affected Products (1)
Rockwell Automation
·
Connected Components Workbench
< R21
Affected Sectors
Multiple
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more