What security vulnerabilities have been disclosed in Rockwell Automation's Pavilion8 product?

Rockwell Automation has disclosed two critical vulnerabilities affecting its Pavilion8 advanced process control product: CVE-2024-7960, which allows unauthorized access and modification of configuration settings, and CVE-2024-7961, a path traversal vulnerability enabling remote code execution.

What is CVE-2024-7960?

CVE-2024-7960 is a critical vulnerability with a CVSS score of 9.1. It allows unauthorized attackers to access sensitive information and modify configuration settings without proper authorization, which could compromise the system's integrity.

What is CVE-2024-7961?

CVE-2024-7961 is a critical path traversal vulnerability with a CVSS score of 9.8. It allows attackers to perform remote code execution by uploading arbitrary files to the server, potentially enabling attackers to take full control of affected systems.

Which versions of Pavilion8 are affected by these vulnerabilities?

The vulnerabilities impact Pavilion8 versions prior to 5.20. Users of these versions are vulnerable to both CVE-2024-7960 and CVE-2024-7961.

What should users do to mitigate these vulnerabilities?

Rockwell Automation strongly encourages users and administrators of affected products to update to the latest version of Pavilion8 immediately to mitigate the security risks posed by CVE-2024-7960 and CVE-2024-7961.

Advisory

Rockwell Automation patches two critical vulnerabilities in Pavilion8

published: Sept. 20, 2024

Take action: If you are running Rockwell Automation Pavilion8, make sure it's isolated in a secure network and not accessible from the internet. Then patch ASAP, because two critical flaws will eventually be exploited.

Learn More

Rockwell Automation has issued security updates to patch two critical vulnerabilities affecting its Pavilion8 advanced process control product.

Rockwell Automation's Pavilion8 is a Model Predictive Control (MPC) platform used to optimize industrial processes. Pavilion8 is widely used across various industries, including chemicals, food and beverage, and cement production to manage complex systems and improve decision-making.

Details of the Vulnerabilities:

CVE-2024-7960 (CVSS score 9.1) - This vulnerability could allow unauthorized attackers to access sensitive information and modify configuration settings without proper authorization. Exploiting this flaw could potentially compromise the system's integrity.
CVE-2024-7961 (CVSS score 9.8) - This path traversal vulnerability allows attackers to perform remote code execution by uploading arbitrary files to the server. It enables attackers to take full control of affected systems.

These vulnerabilities impact Pavilion8 versions prior to 5.20

Users and administrators of affected Rockwell Automation products are strongly encouraged to update to the latest version of Pavilion8 immediately to mitigate these security risks.

Rockwell Automation patches two critical vulnerabilities in Pavilion8

Read More
Cisco fixes critical flaw in affecting Ultra-Reliable Wireless …
Critical Authentication Bypass in D-Link, Securus, and Sparsh …
Critical Vulnerabilities in Schneider Electric APC Easy UPS …
Axis Communications Patches Critical Flaws in Camera Management …
Massive number of SQL Injection Vulnerabilities reported Siemens …