PT-2023-3725 · Rockwell Automation · Factorytalk Transaction Manager

Publicado

2023-06-13

Atualizado

2023-06-26

CVE-2023-2778

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Rockwell Automation FactoryTalk Transaction Manager (affected versions not specified)

Description A denial-of-service issue exists in the software, which can be exploited by sending a modified packet to port 400. This could cause the application to crash or experience high CPU or memory usage, leading to intermittent functionality issues. The application needs to be restarted to recover from the denial-of-service condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Resource Exhaustion

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-400

Identificadores relacionados

BDU:2023-04013

CVE-2023-2778

Produtos afetados

Factorytalk Transaction Manager

PT-2023-3725 · Rockwell Automation · Factorytalk Transaction Manager

CVE-2023-2778

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5