Rockwellautomation Factorytalk Energrymetrix vulnerabilities
2 known vulnerabilities affecting rockwellautomation/factorytalk_energrymetrix.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2016-4522P2CRITICALCVSS 9.8≤ 2.10.002016-07-28
CVE-2016-4522 [CRITICAL] CWE-89 CVE-2016-4522: SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 allows re
SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2016-4531P3HIGHCVSS 7.3≤ 2.10.002016-07-28
CVE-2016-4531 [HIGH] CWE-285 CVE-2016-4531: Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 does not invalidate credentials upon a l
Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 does not invalidate credentials upon a logout action, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.
nvd