CVE-2024-3640 | Rockwell Automation Factory Talk Remote Access up to 13.5.0.174 FTRA Installer Package unquoted search path (icsa-24-135-01)

Inserito da Angelo Barbosa | Mag 14, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Rockwell Automation Factory Talk Remote Access up to 13.5.0.174. Affected by this issue is some unknown functionality of the component FTRA Installer Package. The manipulation leads to unquoted search path.

This vulnerability is handled as CVE-2024-3640. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-3640 | Rockwell Automation Factory Talk Remote Access up to 13.5.0.174 FTRA Installer Package unquoted search path (icsa-24-135-01)

Post correlati

CVE-2020-11859 | OpenText iManager up to 3.2.2 cross site scripting

CVE-2024-23618 | Arris SURFboard SBG6950AC2 9.1.103aa23 missing authentication

CVE-2024-51997 | confidential-containers trustee up to 0.8.1 ART Token Privilege Escalation

CVE-2024-0483 | Taokeyun up to 1.0.5 HTTP POST Request Task.php index cid sql injection