Rockwell Automation Pavilion8

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to view sensitive data due to a lack of encryption.

CVEs (1)

Remediations

• Rockwell Automation has released product updates addressing this vulnerability:
• Pavilion8: update to v6.0 or later
• Users of the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible.
• Interactions between the Console and Dashboard take place on the same machine, the machine should exist behind a firewall and physical access should be limited to authorized personnel.
• Security Best Practices
• Customers can use Stakeholder-Specific Vulnerability Categorization to generate more environment-specific prioritization.

Affected Vendors

Affected Products (1)

Affected Sectors

Critical Manufacturing