CVE-2023-29464
CVSS 3.1 Score 9.1 of 10 (high)
Details
Published Oct 13, 2023
Updated: Oct 20, 2023
CWE ID 787
CWE ID 20
Summary
CVE-2023-29464 is a vulnerability affecting Rockwell Automation's FactoryTalk Linx in the PanelView Plus system. An unauthenticated attacker can exploit this issue by sending maliciously crafted packets to the system, leading to information disclosure. By sending a packet with a size larger than the buffer, the attacker can leak data from the memory. In extreme cases, this can cause communications over the common industrial protocol to become unresponsive, resulting in a denial-of-service attack.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Rockwell Automation