CVE-2014-9209

Published: Mar 31, 2015Modified: May 6, 2026

6.9

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 3.4 / Impact: 10.0

Source: NVD

Description

Untrusted search path vulnerability in the Clean Utility application in Rockwell Automation FactoryTalk Services Platform before 2.71.00 and FactoryTalk View Studio 8.00.00 and earlier allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.

Affected (2)

Products: Rockwellautomation: Factorytalk Services Platform, Factorytalk View Studio

Rockwellautomation

2 products

Factorytalk Services Platform

Factorytalk View Studio

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Rockwellautomation Factorytalk Services Platform	Up to 2.70.00
Rockwellautomation Factorytalk View Studio	Up to 8.00.00

References (4)

https://ics-cert.us-cert.gov/advisories/ICSA-15-062-02

Source: ics-cert@hq.dhs.gov

Third Party AdvisoryUS Government Resource

https://rockwellautomation.custhelp.com/app/answers/detail/a_id/646323

Source: ics-cert@hq.dhs.gov

https://ics-cert.us-cert.gov/advisories/ICSA-15-062-02

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

https://rockwellautomation.custhelp.com/app/answers/detail/a_id/646323

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.