CVE-2021-32960 Information

Description

Rockwell Automation FactoryTalk Services Platform v6.11 and earlier if FactoryTalk Security is enabled and deployed contains a vulnerability that may allow a remote authenticated attacker to bypass FactoryTalk Security policies based on the computer name. If successfully exploited this may allow an attacker to have the same privileges as if they were logged on to the client machine.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1131785 https://www.cisa.gov/uscert/ics/advisories/icsa-21-161-01

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.8