Vulnerabilities > CVE-2014-0755 - Credentials Management vulnerability in Rockwellautomation Rslogix 5000 Design and Configuration Software
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files (aka project files), which allows local users to obtain sensitive information or modify data via unspecified vectors.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 | |
Hardware | 1 |