CVE-2024-12371 - Vulnerability Details

Link	Providers
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html

Type	Values Removed	Values Added
Weaknesses		CWE-306
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Type	Values Removed	Values Added
Description		A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset.
Title		Rockwell Automation PowerMonitor™ 1000 Remote Code Execution
References		https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html
Metrics		cvssV4_0 `{'score': 9.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}`

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-12371", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "state": "PUBLISHED", "assignerShortName": "Rockwell", "dateReserved": "2024-12-09T17:50:47.624Z", "datePublished": "2024-12-18T15:23:37.736Z", "dateUpdated": "2024-12-18T19:59:35.810Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "PM1k 1408-BC3A-485", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-BC3A-ENT", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-TS3A-485", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-TS3A-ENT", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-EM3A-485", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-EM3A-ENT", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-TR1A-485", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-TR2A-485", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<v4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-EM1A-485", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-EM2A-485", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-TR1A-ENT", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-TR2A-ENT", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-EM1A-ENT", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}, {"defaultStatus": "unaffected", "product": "PM1k 1408-EM2A-ENT", "vendor": "Rockwell Automation", "versions": [{"status": "affected", "version": "<4.020"}]}], "datePublic": "2024-12-17T14:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset.</span>"}], "value": "A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset."}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 9.3, "baseSeverity": "CRITICAL", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2024-12-18T15:23:37.736Z"}, "references": [{"url": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<table><tbody><tr><td><p>Affected Products</p></td><td><p>Affected firmware revision</p></td><td><p>Corrected in firmware revision</p></td></tr><tr><td><p>PM1k 1408-BC3A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-BC3A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TS3A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TS3A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM3A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM3A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TR1A-485<b></b></p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TR2A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM1A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM2A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TR1A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TR2A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM1A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM2A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr></tbody></table>\n\n<br>\n\n<p><b>Mitigations and Workarounds</b></p><p>Users using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible. &nbsp; </p><p>\u00b7 &nbsp; &nbsp; &nbsp; <a target=\"_blank\" rel=\"nofollow\" href=\"https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight\">Security Best Practices</a></p>\n\n<br>"}], "value": "Affected Products\n\nAffected firmware revision\n\nCorrected in firmware revision\n\nPM1k 1408-BC3A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-BC3A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-TS3A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-TS3A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-EM3A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-EM3A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-TR1A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-TR2A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-EM1A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-EM2A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-TR1A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-TR2A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-EM1A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-EM2A-ENT\n\n<4.020\n\n4.020\n\n\n\n\n\n\nMitigations and Workarounds\n\nUsers using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible. \u00a0 \n\n\u00b7 \u00a0 \u00a0 \u00a0  Security Best Practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight"}], "source": {"advisory": "SD1714", "discovery": "EXTERNAL"}, "title": "Rockwell Automation PowerMonitor\u2122 1000 Remote Code Execution", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-306", "lang": "en", "description": "CWE-306 Missing Authentication for Critical Function"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-12-18T19:58:35.484632Z", "id": "CVE-2024-12371", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-12-18T19:59:35.810Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2024-12371 (string)

assignerOrgId : b73dd486-f505-4403-b634-40b078b177f0 (string)

state : PUBLISHED (string)

assignerShortName : Rockwell (string)

dateReserved : 2024-12-09T17:50:47.624Z (string)

datePublished : 2024-12-18T15:23:37.736Z (string)

dateUpdated : 2024-12-18T19:59:35.810Z (string)

}

containers : { »

cna : { »

affected : [ »

0 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-BC3A-485 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

1 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-BC3A-ENT (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

2 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-TS3A-485 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

3 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-TS3A-ENT (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

4 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-EM3A-485 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

5 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-EM3A-ENT (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

6 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-TR1A-485 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

7 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-TR2A-485 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <v4.020 (string)

}

]

}

8 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-EM1A-485 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

9 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-EM2A-485 (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

10 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-TR1A-ENT (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

11 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-TR2A-ENT (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

12 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-EM1A-ENT (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

13 : { »

defaultStatus : unaffected (string)

product : PM1k 1408-EM2A-ENT (string)

vendor : Rockwell Automation (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

}

]

datePublic : 2024-12-17T14:00:00.000Z (string)

descriptions : [ »

0 : { »

lang : en (string)

supportingMedia : [ »

0 : { »

base64 : false (boolean)

type : text/html (string)

value : A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset. (string)

}

]

value : A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset. (string)

}

]

metrics : [ »

0 : { »

cvssV4_0 : { »

Automatable : NOT_DEFINED (string)

Recovery : NOT_DEFINED (string)

Safety : NOT_DEFINED (string)

attackComplexity : LOW (string)

attackRequirements : NONE (string)

attackVector : NETWORK (string)

baseScore : 9.3 (number)

baseSeverity : CRITICAL (string)

privilegesRequired : NONE (string)

providerUrgency : NOT_DEFINED (string)

subAvailabilityImpact : NONE (string)

subConfidentialityImpact : NONE (string)

subIntegrityImpact : NONE (string)

userInteraction : NONE (string)

valueDensity : NOT_DEFINED (string)

vectorString : CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N (string)

version : 4.0 (string)

vulnAvailabilityImpact : HIGH (string)

vulnConfidentialityImpact : HIGH (string)

vulnIntegrityImpact : HIGH (string)

vulnerabilityResponseEffort : NOT_DEFINED (string)

}

format : CVSS (string)

scenarios : [ »

0 : { »

lang : en (string)

value : GENERAL (string)

}

]

}

]

providerMetadata : { »

orgId : b73dd486-f505-4403-b634-40b078b177f0 (string)

shortName : Rockwell (string)

dateUpdated : 2024-12-18T15:23:37.736Z (string)

}

references : [ »

0 : { »

url : https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html (string)

}

]

solutions : [ »

0 : { »

lang : en (string)

supportingMedia : [ »

0 : { »

base64 : false (boolean)

type : text/html (string)

value : <table><tbody><tr><td>Affected Products</td><td>Affected firmware revision</td><td>Corrected in firmware revision</td></tr><tr><td>PM1k 1408-BC3A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-BC3A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TS3A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TS3A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM3A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM3A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TR1A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TR2A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM1A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM2A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TR1A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TR2A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM1A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM2A-ENT</td><td><4.020</td><td>4.020</td></tr></tbody></table> Mitigations and WorkaroundsUsers using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible.   ·       <a target="_blank" rel="nofollow" href="https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight">Security Best Practices</a> (string)

}

]

value : Affected Products Affected firmware revision Corrected in firmware revision PM1k 1408-BC3A-485 <4.020 4.020 PM1k 1408-BC3A-ENT <4.020 4.020 PM1k 1408-TS3A-485 <4.020 4.020 PM1k 1408-TS3A-ENT <4.020 4.020 PM1k 1408-EM3A-485 <4.020 4.020 PM1k 1408-EM3A-ENT <4.020 4.020 PM1k 1408-TR1A-485 <4.020 4.020 PM1k 1408-TR2A-485 <4.020 4.020 PM1k 1408-EM1A-485 <4.020 4.020 PM1k 1408-EM2A-485 <4.020 4.020 PM1k 1408-TR1A-ENT <4.020 4.020 PM1k 1408-TR2A-ENT <4.020 4.020 PM1k 1408-EM1A-ENT <4.020 4.020 PM1k 1408-EM2A-ENT <4.020 4.020 Mitigations and Workarounds Users using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible. · Security Best Practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight (string)

}

]

source : { »

advisory : SD1714 (string)

discovery : EXTERNAL (string)

}

title : Rockwell Automation PowerMonitor™ 1000 Remote Code Execution (string)

x_generator : { »

engine : Vulnogram 0.2.0 (string)

}

adp : [ »

0 : { »

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

type : CWE (string)

cweId : CWE-306 (string)

lang : en (string)

description : CWE-306 Missing Authentication for Critical Function (string)

}

]

}

]

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-12-18T19:58:35.484632Z (string)

id : CVE-2024-12371 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-12-18T19:59:35.810Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-12371", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-12-18T19:58:35.484632Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-306", "description": "CWE-306 Missing Authentication for Critical Function"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-12-18T19:59:30.365Z"}}], "cna": {"title": "Rockwell Automation PowerMonitor\u2122 1000 Remote Code Execution", "source": {"advisory": "SD1714", "discovery": "EXTERNAL"}, "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 9.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Rockwell Automation", "product": "PM1k 1408-BC3A-485", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-BC3A-ENT", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-TS3A-485", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-TS3A-ENT", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-EM3A-485", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-EM3A-ENT", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-TR1A-485", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-TR2A-485", "versions": [{"status": "affected", "version": "<v4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-EM1A-485", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-EM2A-485", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-TR1A-ENT", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-TR2A-ENT", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-EM1A-ENT", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}, {"vendor": "Rockwell Automation", "product": "PM1k 1408-EM2A-ENT", "versions": [{"status": "affected", "version": "<4.020"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Affected Products\n\nAffected firmware revision\n\nCorrected in firmware revision\n\nPM1k 1408-BC3A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-BC3A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-TS3A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-TS3A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-EM3A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-EM3A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-TR1A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-TR2A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-EM1A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-EM2A-485\n\n<4.020\n\n4.020\n\nPM1k 1408-TR1A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-TR2A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-EM1A-ENT\n\n<4.020\n\n4.020\n\nPM1k 1408-EM2A-ENT\n\n<4.020\n\n4.020\n\n\n\n\n\n\nMitigations and Workarounds\n\nUsers using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible. \u00a0 \n\n\u00b7 \u00a0 \u00a0 \u00a0  Security Best Practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight", "supportingMedia": [{"type": "text/html", "value": "<table><tbody><tr><td><p>Affected Products</p></td><td><p>Affected firmware revision</p></td><td><p>Corrected in firmware revision</p></td></tr><tr><td><p>PM1k 1408-BC3A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-BC3A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TS3A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TS3A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM3A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM3A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TR1A-485<b></b></p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TR2A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM1A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM2A-485</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TR1A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-TR2A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM1A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr><tr><td><p>PM1k 1408-EM2A-ENT</p></td><td><p>&lt;4.020</p></td><td><p>4.020</p></td></tr></tbody></table>\n\n<br>\n\n<p><b>Mitigations and Workarounds</b></p><p>Users using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible. &nbsp; </p><p>\u00b7 &nbsp; &nbsp; &nbsp; <a target=\"_blank\" rel=\"nofollow\" href=\"https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight\">Security Best Practices</a></p>\n\n<br>", "base64": false}]}], "datePublic": "2024-12-17T14:00:00.000Z", "references": [{"url": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset.</span>", "base64": false}]}], "providerMetadata": {"orgId": "b73dd486-f505-4403-b634-40b078b177f0", "shortName": "Rockwell", "dateUpdated": "2024-12-18T15:23:37.736Z"}}}, "cveMetadata": {"cveId": "CVE-2024-12371", "state": "PUBLISHED", "dateUpdated": "2024-12-18T19:59:35.810Z", "dateReserved": "2024-12-09T17:50:47.624Z", "assignerOrgId": "b73dd486-f505-4403-b634-40b078b177f0", "datePublished": "2024-12-18T15:23:37.736Z", "assignerShortName": "Rockwell"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2024-12371 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-12-18T19:58:35.484632Z (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : CWE (string)

cweId : CWE-306 (string)

description : CWE-306 Missing Authentication for Critical Function (string)

}

]

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-12-18T19:59:30.365Z (string)

}

]

cna : { »

title : Rockwell Automation PowerMonitor™ 1000 Remote Code Execution (string)

source : { »

advisory : SD1714 (string)

discovery : EXTERNAL (string)

}

metrics : [ »

0 : { »

format : CVSS (string)

cvssV4_0 : { »

Safety : NOT_DEFINED (string)

version : 4.0 (string)

Recovery : NOT_DEFINED (string)

baseScore : 9.3 (number)

Automatable : NOT_DEFINED (string)

attackVector : NETWORK (string)

baseSeverity : CRITICAL (string)

valueDensity : NOT_DEFINED (string)

vectorString : CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N (string)

providerUrgency : NOT_DEFINED (string)

userInteraction : NONE (string)

attackComplexity : LOW (string)

attackRequirements : NONE (string)

privilegesRequired : NONE (string)

subIntegrityImpact : NONE (string)

vulnIntegrityImpact : HIGH (string)

subAvailabilityImpact : NONE (string)

vulnAvailabilityImpact : HIGH (string)

subConfidentialityImpact : NONE (string)

vulnConfidentialityImpact : HIGH (string)

vulnerabilityResponseEffort : NOT_DEFINED (string)

}

scenarios : [ »

0 : { »

lang : en (string)

value : GENERAL (string)

}

]

}

]

affected : [ »

0 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-BC3A-485 (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

1 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-BC3A-ENT (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

2 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-TS3A-485 (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

3 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-TS3A-ENT (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

4 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-EM3A-485 (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

5 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-EM3A-ENT (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

6 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-TR1A-485 (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

7 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-TR2A-485 (string)

versions : [ »

0 : { »

status : affected (string)

version : <v4.020 (string)

}

]

defaultStatus : unaffected (string)

}

8 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-EM1A-485 (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

9 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-EM2A-485 (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

10 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-TR1A-ENT (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

11 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-TR2A-ENT (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

12 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-EM1A-ENT (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

13 : { »

vendor : Rockwell Automation (string)

product : PM1k 1408-EM2A-ENT (string)

versions : [ »

0 : { »

status : affected (string)

version : <4.020 (string)

}

]

defaultStatus : unaffected (string)

}

]

solutions : [ »

0 : { »

lang : en (string)

value : Affected Products Affected firmware revision Corrected in firmware revision PM1k 1408-BC3A-485 <4.020 4.020 PM1k 1408-BC3A-ENT <4.020 4.020 PM1k 1408-TS3A-485 <4.020 4.020 PM1k 1408-TS3A-ENT <4.020 4.020 PM1k 1408-EM3A-485 <4.020 4.020 PM1k 1408-EM3A-ENT <4.020 4.020 PM1k 1408-TR1A-485 <4.020 4.020 PM1k 1408-TR2A-485 <4.020 4.020 PM1k 1408-EM1A-485 <4.020 4.020 PM1k 1408-EM2A-485 <4.020 4.020 PM1k 1408-TR1A-ENT <4.020 4.020 PM1k 1408-TR2A-ENT <4.020 4.020 PM1k 1408-EM1A-ENT <4.020 4.020 PM1k 1408-EM2A-ENT <4.020 4.020 Mitigations and Workarounds Users using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible. · Security Best Practices https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight (string)

supportingMedia : [ »

0 : { »

type : text/html (string)

value : <table><tbody><tr><td>Affected Products</td><td>Affected firmware revision</td><td>Corrected in firmware revision</td></tr><tr><td>PM1k 1408-BC3A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-BC3A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TS3A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TS3A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM3A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM3A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TR1A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TR2A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM1A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM2A-485</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TR1A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-TR2A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM1A-ENT</td><td><4.020</td><td>4.020</td></tr><tr><td>PM1k 1408-EM2A-ENT</td><td><4.020</td><td>4.020</td></tr></tbody></table> Mitigations and WorkaroundsUsers using the affected software, who are not able to upgrade to one of the corrected versions, are encouraged to apply security best practices, where possible.   ·       <a target="_blank" rel="nofollow" href="https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight">Security Best Practices</a> (string)

base64 : false (boolean)

}

]

}

]

datePublic : 2024-12-17T14:00:00.000Z (string)

references : [ »

0 : { »

url : https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html (string)

}

]

x_generator : { »

engine : Vulnogram 0.2.0 (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset. (string)

supportingMedia : [ »

0 : { »

type : text/html (string)

value : A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset. (string)

base64 : false (boolean)

}

]

}

]

providerMetadata : { »

orgId : b73dd486-f505-4403-b634-40b078b177f0 (string)

shortName : Rockwell (string)

dateUpdated : 2024-12-18T15:23:37.736Z (string)

}

cveMetadata : { »

cveId : CVE-2024-12371 (string)

state : PUBLISHED (string)

dateUpdated : 2024-12-18T19:59:35.810Z (string)

dateReserved : 2024-12-09T17:50:47.624Z (string)

assignerOrgId : b73dd486-f505-4403-b634-40b078b177f0 (string)

datePublished : 2024-12-18T15:23:37.736Z (string)

assignerShortName : Rockwell (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset."}], "id": "CVE-2024-12371", "lastModified": "2024-12-18T20:15:21.193", "metrics": {"cvssMetricV40": [{"cvssData": {"attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "automatable": "NOT_DEFINED", "availabilityRequirements": "NOT_DEFINED", "baseScore": 9.3, "baseSeverity": "CRITICAL", "confidentialityRequirements": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirements": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubsequentSystemAvailability": "NOT_DEFINED", "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnerableSystemAvailability": "NOT_DEFINED", "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "recovery": "NOT_DEFINED", "safety": "NOT_DEFINED", "subsequentSystemAvailability": "NONE", "subsequentSystemConfidentiality": "NONE", "subsequentSystemIntegrity": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnerabilityResponseEffort": "NOT_DEFINED", "vulnerableSystemAvailability": "HIGH", "vulnerableSystemConfidentiality": "HIGH", "vulnerableSystemIntegrity": "HIGH"}, "source": "PSIRT@rockwellautomation.com", "type": "Secondary"}]}, "published": "2024-12-18T16:15:10.907", "references": [{"source": "PSIRT@rockwellautomation.com", "url": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html"}], "sourceIdentifier": "PSIRT@rockwellautomation.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-306"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : A device takeover vulnerability exists in the Rockwell Automation Power Monitor 1000. This vulnerability allows configuration of a new Policyholder user without any authentication via API. Policyholder user is the most privileged user that can perform edit operations, creating admin users and performing factory reset. (string)

}

]

id : CVE-2024-12371 (string)

lastModified : 2024-12-18T20:15:21.193 (string)

metrics : { »

cvssMetricV40 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackRequirements : NONE (string)

attackVector : NETWORK (string)

automatable : NOT_DEFINED (string)

availabilityRequirements : NOT_DEFINED (string)

baseScore : 9.3 (number)

baseSeverity : CRITICAL (string)

confidentialityRequirements : NOT_DEFINED (string)

exploitMaturity : NOT_DEFINED (string)

integrityRequirements : NOT_DEFINED (string)

modifiedAttackComplexity : NOT_DEFINED (string)

modifiedAttackRequirements : NOT_DEFINED (string)

modifiedAttackVector : NOT_DEFINED (string)

modifiedPrivilegesRequired : NOT_DEFINED (string)

modifiedSubsequentSystemAvailability : NOT_DEFINED (string)

modifiedSubsequentSystemConfidentiality : NOT_DEFINED (string)

modifiedSubsequentSystemIntegrity : NOT_DEFINED (string)

modifiedUserInteraction : NOT_DEFINED (string)

modifiedVulnerableSystemAvailability : NOT_DEFINED (string)

modifiedVulnerableSystemConfidentiality : NOT_DEFINED (string)

modifiedVulnerableSystemIntegrity : NOT_DEFINED (string)

privilegesRequired : NONE (string)

providerUrgency : NOT_DEFINED (string)

recovery : NOT_DEFINED (string)

safety : NOT_DEFINED (string)

subsequentSystemAvailability : NONE (string)

subsequentSystemConfidentiality : NONE (string)

subsequentSystemIntegrity : NONE (string)

userInteraction : NONE (string)

valueDensity : NOT_DEFINED (string)

vectorString : CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X (string)

version : 4.0 (string)

vulnerabilityResponseEffort : NOT_DEFINED (string)

vulnerableSystemAvailability : HIGH (string)

vulnerableSystemConfidentiality : HIGH (string)

vulnerableSystemIntegrity : HIGH (string)

}

source : PSIRT@rockwellautomation.com (string)

type : Secondary (string)

}

]

}

published : 2024-12-18T16:15:10.907 (string)

references : [ »

0 : { »

source : PSIRT@rockwellautomation.com (string)

url : https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1714.html (string)

}

]

sourceIdentifier : PSIRT@rockwellautomation.com (string)

vulnStatus : Received (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-306 (string)

}

]

source : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

type : Secondary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object