Rockwellautomation Factorytalk Policy Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Rockwellautomation Factorytalk Policy Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-2637 — CVSS 7.3 (high): Rockwell Automation's FactoryTalk System Services uses a hard-coded cryptographic key to generate administrator cookies. Hard-coded…
CVE-2024-6325 — CVSS 6.5 (medium): The v6.40 release of Rockwell Automation FactoryTalk® Policy Manager CVE-2021-22681 https://www.rockwellautomation.com/en-us/trust-center/s…
CVE-2023-2638 — CVSS 5.9 (medium): Rockwell Automation's FactoryTalk System Services does not verify that a backup configuration archive is password protected. Improper…
CVE-2024-6326 — CVSS 5.5 (medium): An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A malicious user could…
CVE-2023-2639 — CVSS 4.1 (medium): The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules…