CVE-2023-2639
CVE-2023-2639 is a medium-severity vulnerability in Rockwellautomation Factorytalk Policy Manager with a CVSS 3.x base score of 4.1. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-346.
Key facts
- Severity: Medium (CVSS 3.x base score 4.1)
- EPSS exploit prediction: 0% (30th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-346
- Affected product: Rockwellautomation Factorytalk Policy Manager
- Published:
- Last modified:
Description
The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that the origin of the communication is from a legitimate local client device. This may allow a threat actor to craft a malicious website that, when visited, will send a malicious script that can connect to the local WebSocket endpoint and wait for events as if it was a valid client device. If successfully exploited, this would allow a threat actor to receive information including whether FactoryTalk Policy Manager is installed and potentially the entire security policy.
Frequently asked questions
- What is CVE-2023-2639?
- The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that the origin of the communication is from a legitimate local client device. This may allow a threat actor to craft a malicious website that, when visited, will send a malicious script that can connect to the local WebSocket endpoint and wait for events as if it was a valid client device. If successfully exploited, this would allow a threat actor to receive information including whether FactoryTalk Policy Manager is installed and potentially the entire security policy.
- How severe is CVE-2023-2639?
- CVE-2023-2639 has a CVSS 3.x base score of 4.1, rated medium severity. It is exploitable over network with low attack complexity, requires low privileges and user interaction. Impact on confidentiality is low, integrity none, and availability none.
- Is CVE-2023-2639 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (30th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2023-2639?
- CVE-2023-2639 primarily affects Rockwellautomation Factorytalk Policy Manager. In total, 2 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2023-2639?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2023-2639 published?
- CVE-2023-2639 was published on 2023-06-13 and last updated on 2026-06-17.
References
Affected products (2)
- cpe:2.3:a:rockwellautomation:factorytalk_policy_manager:6.11.0:*:*:*:*:*:*:*
- cpe:2.3:a:rockwellautomation:factorytalk_system_services:6.11.0:*:*:*:*:*:*:*
More vulnerabilities in Rockwellautomation Factorytalk Policy Manager
- CVE-2023-2637 — High (CVSS 7.3): Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator…
- CVE-2024-6325 — Medium (CVSS 6.5): The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681…
- CVE-2023-2638 — Medium (CVSS 5.9): Rockwell Automation's FactoryTalk System Services does not verify that a backup configuration archive is password…
- CVE-2024-6326 — Medium (CVSS 5.5): An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A…
All CVEs affecting Rockwellautomation Factorytalk Policy Manager →
Other CWE-346 vulnerabilities
- CVE-2026-42901 — Critical (CVSS 10.0): Origin validation error in Microsoft Entra ID allows an unauthorized attacker to elevate privileges over a network.
- CVE-2026-6508 — Critical (CVSS 9.8): Origin Validation Error vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows…
- CVE-2026-2790 — Critical (CVSS 9.8): Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR…
- CVE-2022-50925 — Critical (CVSS 9.8): Prowise Reflect version 1.0.9 contains a remote keystroke injection vulnerability that allows attackers to send…
- CVE-2025-30466 — Critical (CVSS 9.8): This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS…
- CVE-2024-8487 — Critical (CVSS 9.8): A Cross-Origin Resource Sharing (CORS) vulnerability exists in modelscope/agentscope version v0.0.4. The CORS…