Security Advisory

CVE-2022-38743

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-17 00:00:00

Last updated 2025-05-13 14:09:08

Assigner Rockwell

State PUBLISHED

Description

Rockwell Automation FactoryTalk VantagePoint versions 8.0, 8.10, 8.20, 8.30, 8.31 are vulnerable to an improper access control vulnerability. The FactoryTalk VantagePoint SQL Server account could allow a malicious user with read-only privileges to execute SQL statements in the back-end database. If successfully exploited, this could allow the attacker to execute arbitrary code and gain access to restricted data.

← Browse all CVEs View on cve.org ↗