CVE-2023-2638

Published: Jun 13, 2023Modified: Nov 21, 2024

5.0

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

Exploitability: 1.3 / Impact: 3.6

Source: NVD

Description

Rockwell Automation's FactoryTalk System Services does not verify that a backup configuration archive is password protected. Improper authorization in FTSSBackupRestore.exe may lead to the loading of malicious configuration archives. This vulnerability may allow a local, authenticated non-admin user to craft a malicious backup archive, without password protection, that will be loaded by FactoryTalk System Services as a valid backup when a restore procedure takes places. User interaction is required for this vulnerability to be successfully exploited.

Affected (2)

Products: Rockwellautomation: Factorytalk Policy Manager, Factorytalk System Services

Rockwellautomation

2 products

Factorytalk Policy Manager

Factorytalk System Services

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Rockwellautomation Factorytalk Policy Manager	Version 6.11.0
Rockwellautomation Factorytalk System Services	Version 6.11.0

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (2)

https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1139683

Source: PSIRT@rockwellautomation.com

Permissions RequiredVendor Advisory

https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1139683

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredVendor Advisory

Timeline

No history available yet.