Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-6326

An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A malicious user could exploit this vulnerability by starting a back-up or restore process, which temporarily exposes private keys, passwords, pre-shared keys, and database folders when they are temporarily copied to an interim folder. This vulnerability is due to the lack of explicit permissions set on the backup folder. If private keys are obtained by a malicious user, they could impersonate resources on the secured network.

Published

2024-07-16T17:15:12.117

Last Modified

2024-11-21T09:49:26.167

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Secondary
CWE-269
Type: Primary
CWE-276

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	rockwellautomation	factorytalk_policy_manager	6.40.0	Yes
Application	rockwellautomation	factorytalk_system_services	6.40.0	Yes

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1678.html Mitigation, Vendor Advisory ([email protected])
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1678.html Mitigation, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)