PT-2019-9684 · Rockwell Automation · Factorytalk Services Platform

Andrey Zhukov

Published

2018-12-20

Updated

2019-10-09

CVE-2018-18981

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Rockwell Automation FactoryTalk Services Platform versions 2.90 and earlier

Description A remote unauthenticated attacker could send numerous crafted packets to service ports, resulting in memory consumption that could lead to a partial or complete denial-of-service condition to the affected services.

Recommendations For versions 2.90 and earlier, update to a version later than 2.90 to resolve the issue.

Fix

Memory Corruption

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-122

Related Identifiers

BDU:2025-06749

CVE-2018-18981

Affected Products

Factorytalk Services Platform

PT-2019-9684 · Rockwell Automation · Factorytalk Services Platform

CVE-2018-18981

Weakness Enumeration

Related Identifiers

Affected Products

References · 6