Rockwell Automation FactoryTalk View Site Edition (Update A)

Risk Summary

Successful exploitation of this vulnerability could allow any user to edit or replace files, which are executed by account with elevated permissions.

CVEs (1)

Remediations

• By default, all HMI server projects are saved in the HMI projects folder on the HMI server computer located at C:\Users\Public\Documents\RSView Enterprise\SE\HMI projects. Rockwell Automation encourages users of the affected software to enhance security and prevent unauthorized modifications to these projects by tightening the Windows folder's security settings on the HMI server computer by following these steps:
• Remove the INTERACTIVE group from the folder's security properties.
• Add specific users or user groups and assign their permissions to this folder as needed.
• If you assign read-only permission to those users or user groups, they can only view and will not be able to write to project files. Users with read-only permission can still test run and run the FactoryTalk View SE client.
• In Version 14: Open FactoryTalk View Studio -> Help -> FactoryTalk View SE Help -> In the Help file -> Security -> "HMI projects folder"
• For information on how to mitigate security risks on industrial automation control systems, Rockwell Automation encourages customers to implement their suggested security best practices to minimize the risk of the vulnerability.
• For more information, refer to Rockwell Automation's security advisory SD 1688.

Affected Vendors

Affected Products (1)

Affected Sectors

Chemical, Commercial Facilities, Critical Manufacturing, Energy, Government Facilities, Water and Wastewater Systems