Rockwell Automation FactoryTalk® Service Platform Service Token Vulnerability
CVE-2024-21917

9.8CRITICAL

Key Information:

Vendor: Rockwell Automation
Status: Factorytalk® Service Platform
Vendor: CVE Published:; 31 January 2024

Summary

A security vulnerability has been identified within Rockwell Automation's FactoryTalk Service Platform, which permits unauthorized access via the service token. The vulnerability arises from the absence of digital signature validation for the FTSP service token in relation to directories. An attacker exploiting this flaw could obtain the service token and use it to authenticate themselves on any other FTSP directory, resulting in unauthorized access to user data and the ability to modify critical settings without proper authentication. This poses a significant risk to the integrity and confidentiality of user information and operational settings within affected environments.

Affected Version(s)

FactoryTalk® Service Platform <= v6.31

References

https://www.rockwellautomation.com/en-us/support/advisory...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 31, 2024
Vulnerability Reserved
Jan 3, 2024