Remote Code Execution Vulnerability in Rockwell Automation Products
CVE-2024-10944

Currently unrated

Key Information:

Vendor: Rockwell Automation
Status: Various Rockwell Automation Products
Vendor: CVE Published:; 12 November 2024

Summary

A vulnerability has been identified in certain Rockwell Automation products that allows for Remote Code Execution due to inadequate input validation processes. This issue can be exploited by an entity with elevated permissions, enabling the potential deployment of a malicious Updated Agent. Organizations utilizing these products should assess their systems for any risks associated with this vulnerability and implement necessary security measures.

References

https://www.rockwellautomation.com/en-us/trust-center/sec...

Timeline

Vulnerability published
Nov 12, 2024