Auth bypass in Rockwell Automation Datamosaix™
CVE-2024-6078
CVE-2024-6078 IMPACT An improper authentication vulnerability exists in the affected product, which could allow a malicious user to generate cookies for any user ID without the use of a username or password. If exploited, a malicious user…
Vulnerability class: Broken Authentication
EPSS: 0.004 (29.6th percentile) — read the EPSS interpretation.
Affected products
- Rockwell Automation Datamosaix™ — versions 7.07