← Back to home
ICSA-24-256-24  ·  Published 2024-09-12  ·  View on CISA ICS-CERT ↗

Rockwell Automation Pavilion8

CVSS 7.6 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to view sensitive information or upload arbitrary files that could result in remote code execution.

CVEs (2)

Remediations

  • Rockwell Automation offers users the following solutions:
  • Pavilion8: Update to V6.0 and later
  • Customers using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible.
  • For more information about this issue, please see the advisory on the Rockwell Automation security page.

Affected Vendors

Rockwell Automation

Affected Products (1)

Rockwell Automation · Pavilion8 <V5.20

Affected Sectors

Critical Manufacturing

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more