Rockwellautomation Pavilion8 — known CVE vulnerabilities
Every CVE whose affected-product data names Rockwellautomation Pavilion8, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2024-7961 — CVSS 9.8 (critical): A path traversal vulnerability exists in the Rockwell Automation affected product. If exploited, the threat actor could upload arbitrary…
CVE-2024-7960 — CVSS 9.1 (critical): The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change…
CVE-2023-29463 — CVSS 8.8 (high): The JMX Console within the Rockwell Automation Pavilion8 is exposed to application users and does not require authentication. If exploited…
CVE-2024-6435 — CVSS 8.8 (high): A privilege escalation vulnerability exists in the affected products which could allow a malicious user with basic privileges to access…
CVE-2024-40620 — CVSS 7.5 (high): CVE-2024-40620 IMPACT A vulnerability exists in the affected product due to lack of encryption of sensitive information. The vulnerability…