CVE-2016-4522
published 2016-07-28CVE-2016-4522: SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 allows remote attackers to execute arbitrary SQL commands via…
PriorityP261critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
6.30%
92.7th percentile
SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rockwellautomation | factorytalk_energrymetrix | <= 2.10.00 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →CVE-2016-4522 is an unauthenticated SQL injection in Rockwell Automation FactoryTalk EnergyMetrix ≤ 2.10.00, exploitable remotely with low skill; monitor web traffic to the EnergyMetrix application for anomalous SQL metacharacters in HTTP requests. ↗
- →Attacker skill level is low; automated SQL injection tooling (e.g., sqlmap) against the EnergyMetrix web endpoint is a plausible attack vector to watch for in IDS/WAF logs. ↗
- ·No known public exploits specifically target this vulnerability at time of advisory publication; detection should focus on behavioral/anomaly indicators rather than known exploit signatures. ↗
- ·The SQL injection attack surface and specific vulnerable parameters are unspecified in public disclosures, limiting the ability to write precise parameter-level detection rules. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Rockwell Automation FactoryTalk EnergyMetrix Vulnerabilities
cisa_ics·2018-08-23
Rockwell Automation FactoryTalk EnergyMetrix Vulnerabilities
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Rockwell Automation FactoryTalk EnergyMetrix Vulnerabilities
Last RevisedAugust 23, 2018
Alert CodeICSA-16-173-03
## OVERVIEW
This advisory was originally posted to the US-CERT secure Portal library on June 21, 2016, and is being released to the NCCIC/ICS-CERT web site.
Rockwell Automation has identified authentication vulnerabilities in the FactoryTalk EnergyMetrix application. Rockwell Automation has produced a new version to mitigate these vulnerabilities.
These vulnerabilities could be exploited remotely.
## AFFECTED PRODUCTS
The following FactoryTalk EnergyMetrix versio
GHSA
GHSA-358g-mf8q-pgmj: SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2
ghsa_unreviewed·2022-05-17
CVE-2016-4522 [CRITICAL] CWE-89 GHSA-358g-mf8q-pgmj: SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2
SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2016-07-28
Published