← Back to CVEs
CVE-2023-2637
HIGH7.3
Description
Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies. Hard-coded cryptographic key may lead to privilege escalation. This vulnerability may allow a local, authenticated non-admin user to generate an invalid administrator cookie giving them administrative privileges to the FactoryTalk Policy Manger database. This may allow the threat actor to make malicious changes to the database that will be deployed when a legitimate FactoryTalk Policy Manager user deploys a security policy model. User interaction is required for this vulnerability to be successfully exploited.
CVE Details
CVSS v3.1 Score7.3
SeverityHIGH
CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:H
Attack VectorLOCAL
ComplexityLOW
Privileges RequiredLOW
User InteractionREQUIRED
Published6/13/2023
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
rockwellautomation:factorytalk_policy_managerrockwellautomation:factorytalk_system_services
Weaknesses (CWE)
CWE-321CWE-798
References
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1139683(PSIRT@rockwellautomation.com)
https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1139683(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.