The AosService.rem service in Rockwell Automation...
Critical severity
Unreviewed
Published
Mar 24, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Mar 23, 2022
Published to the GitHub Advisory Database
Mar 24, 2022
Last updated
Jan 27, 2023
The AosService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier exposes functions lacking proper authentication. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary SQL statements.
References