CVE-2024-7960
published 2024-09-12CVE-2024-7960: The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. The…
PriorityP349critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
EPSS
0.45%
36.0th percentile
The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. The vulnerability exists due to having an incorrect privilege matrix that allows users to have access to functions they should not.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| rockwell_automation | pavilion8 | — | — |
| rockwellautomation | pavilion8 | < 6.0 | 6.0 |
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv4.08.8HIGHCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xj5f-4vpp-mxhf: The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings
ghsa_unreviewed·2024-09-12
CVE-2024-7960 [HIGH] CWE-269 GHSA-xj5f-4vpp-mxhf: The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings
The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. The vulnerability exists due to having an incorrect privilege matrix that allows users to have access to functions they should not.
CISA ICS
Rockwell Automation Pavilion8
cisa_ics·2024-09-12·CVSS 8.8
[HIGH] Rockwell Automation Pavilion8
ICS Advisory
##
Rockwell Automation Pavilion8
Release DateSeptember 12, 2024
Alert CodeICSA-24-256-24
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 8.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Rockwell Automation
- Equipment: Pavilion8
- Vulnerabilities: Improper Privilege Management, Path Traversal
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to view sensitive information or upload arbitrary files that could result in remote code execution.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following versions of Rockwell Automation Pavilion8, a model predictive control software, are affected
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-09-12
Published