Remote code execution in Rockwell Automation FactoryTalk Services Platform



Published: 2020-06-19
Risk Low
Patch available NO
Number of vulnerabilities 1
CVE-ID CVE-2020-12033
CWE-ID CWE-20
Exploitation vector Local network
Public exploit N/A
Vulnerable software
Subscribe 		FactoryTalk Services Platform
Client/Desktop applications / Other client software

Vendor Rockwell Automation

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Input validation error

EUVDB-ID: #VU29161

Risk: Low

CVSSv3.1: 6.9 [CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:U/RC:C]

CVE-ID: CVE-2020-12033

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to the affected product’s redundancy host service (RdcyHost.exe) does not validate supplied identifiers. A remote attacker on the local network can execute COM objects with elevated privileges.

Mitigation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

FactoryTalk Services Platform: All versions

External links

http://ics-cert.us-cert.gov/advisories/icsa-20-170-04


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###