Rockwellautomation Connected Components Workbench — known CVE vulnerabilities
Every CVE whose affected-product data names Rockwellautomation Connected Components Workbench, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2021-27475 — CVSS 8.6 (high): Rockwell Automation Connected Components Workbench v12.00.00 and prior does not limit the objects that can be deserialized. This…
CVE-2021-27471 — CVSS 7.7 (high): The parsing mechanism that processes certain file types does not provide input sanitization for file paths. This may allow an attacker to…
CVE-2014-5424 — CVSS 7.5 (high): Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application…
CVE-2017-5176 — CVSS 7.0 (high): A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench (CCW). The following versions are affected…
CVE-2021-27473 — CVSS 6.1 (medium): Rockwell Automation Connected Components Workbench v12.00.00 and prior does not sanitize paths specified within the .ccwarc archive file…
CVE-2022-1018 — CVSS 5.5 (medium): When opening a malicious solution file provided by an attacker, the application suffers from an XML external entity vulnerability due to an…