Vulnerabilities > Rockwellautomation > Factorytalk Services Platform > 6.31.00

DATE CVE VULNERABILITY TITLE RISK
2024-01-31 CVE-2024-21917 Improper Verification of Cryptographic Signature vulnerability in Rockwellautomation Factorytalk Services Platform
A vulnerability exists in Rockwell Automation FactoryTalk® Service Platform that allows a malicious user to obtain the service token and use it for authentication on another FTSP directory.
network
low complexity
rockwellautomation CWE-347
critical
9.1
2021-03-03 CVE-2021-22681 Insufficiently Protected Credentials vulnerability in Rockwellautomation products
Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to verify Logix controllers are communicating with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogix 5560, 5730, 1794-L34; Compact GuardLogix 5370, 5380; GuardLogix 5570, 5580; SoftLogix 5800.
network
low complexity
rockwellautomation CWE-522
critical
9.8