CNNVD-202602-886 Information
CNNVD ID
CNNVD-202602-886
Related CVE
- CNNVD Published: 2026-02-05
Description (Chinese)
Rockwell Automation Studio 5000 Logix Designer是美国罗克韦尔(Rockwell Automation)公司的一个基于 Windows 的应用程序。用于为 PLC 构建程序。 Rockwell Automation Studio 5000 Logix Designer 30.01.00版本存在代码问题漏洞,该漏洞源于FactoryTalk Activation Service中未加引号的服务路径,可能导致本地用户执行代码并提升权限。
Description (English)
Rockwell AutoStudio 5000 Logix Designer is a Windows-based application of Rockwell Automation in the United States. for the PLC builder. Lockwell AutoStudio 5000 Logix Designer 30.01.00 has a code problem loophole, which originates from a service path that has no quotes in FactTalk Action Service, which may lead to local user implementation of the code and enhanced privileges.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
罗克韦尔
Published
2026-02-05
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/47676 https://www.rockwellautomation.com/en_NA/overview.page https://www.vulncheck.com/advisories/studio-logix-designer-factorytalk-activation-service-unquoted-service-path
Share on: