CVE-2014-0755
N/A
N/A
Summary
Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files (aka project files), which allows local users to obtain sensitive information or modify data via unspecified vectors.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Rockwell Automation | RSLogix 5000 software | V7 <= V20.01 | affected |
| Rockwell Automation | RSLogix 5000 software | V7 <= V21.0 | affected |
| Rockwell Automation | RSLogix 5000 software | V20.03 | unaffected |
| Rockwell Automation | RSLogix 5000 software | V21.03 | unaffected |
Weaknesses
- CWE-522: CWE-522
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90981
- http://ics-cert.us-cert.gov/advisories/ICSA-14-021-01
- http://osvdb.org/102858
- http://www.securityfocus.com/bid/65337
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90981
- https://www.cisa.gov/news-events/ics-advisories/icsa-14-021-01
- http://osvdb.org/102858
- http://www.securityfocus.com/bid/65337
- https://rockwellautomation.custhelp.com/app/answers/detail/a_id/565204
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.