Rockwellautomation Pavilion8
5 CVEs affecting Rockwellautomation Pavilion8. Latest disclosed: 2024-09-12. Critical: 2, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-7961 | Critical | 9.8 | 2024-09-12 | A path traversal vulnerability exists in the Rockwell Automation affected product. If exploited, the threat actor could upload arbitrary files to the server t… |
CVE-2024-7960 | Critical | 9.1 | 2024-09-12 | The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. The vulnerabili… |
CVE-2024-6435 | High | 8.8 | 2024-07-16 | A privilege escalation vulnerability exists in the affected products which could allow a malicious user with basic privileges to access functions which should… |
CVE-2023-29463 | High | 8.8 | 2023-09-12 | The JMX Console within the Rockwell Automation Pavilion8 is exposed to application users and does not require authentication. If exploited, a malicious user c… |
CVE-2024-40620 | High | 7.5 | 2024-08-14 | CVE-2024-40620 IMPACT A vulnerability exists in the affected product due to lack of encryption of sensitive information. The vulnerability results in data bei… |