PT-2024-2553 · Rockwell Automation · Rockwell Automation Panelview Plus 7+1
Published
2024-03-21
·
Updated
2025-09-19
·
CVE-2024-21914
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
Rockwell Automation PanelView Plus 7 (affected versions not specified)
Rockwell Automation FactoryTalk View Machine Edition (affected versions not specified)
Description
A vulnerability exists in the affected product that allows a malicious user to restart the Rockwell Automation PanelView Plus 7 terminal remotely without security protections. If the vulnerability is exploited, it could lead to the loss of view or control of the PanelView product. The issue is related to inadequate access control in the software used for creating and managing the graphical user interface on Rockwell Automation industrial devices.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Access Control
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Rockwell Automation Factorytalk View Machine Edition
Rockwell Automation Panelview Plus 7