← Back to home
ICSA-24-004-01  ·  Published 2024-01-04  ·  View on CISA ICS-CERT ↗

Rockwell Automation FactoryTalk Activation

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could result in a buffer overflow and allow the attacker to gain full access to the system.

CVEs (2)

Remediations

  • Users of the affected software are encouraged to apply the risk mitigations, if possible:
  • Upgrade to FactoryTalk Activation Manager 5.01 which has been patched to mitigate these issues.
  • For information on how to mitigate security risks on industrial automation control systems see our suggested security best practices.
  • Rockwell Automation encourages users to implement their suggested security best practices to minimize risk of the vulnerability.
  • For more information, please see the security advisory from Rockwell Automation

Affected Vendors

Rockwell Automation

Affected Products (1)

Rockwell Automation · Factory Talk Activation Manager <V4.00_Utilizes_Wibu-Systems_CodeMeter_7.60c

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more