Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?
Rockwell Automation Security Alert: Pavilion 8’s Sneaky User Creation Vulnerability!
Attention Rockwell Automation Pavilion 8 users! A vulnerability (CVSS v4 8.7) allows remote attackers to create new users and view sensitive data. Update to version 6.0 or follow best practices to mitigate risks. View CSAF for detailed info.
Hot Take:
Looks like Rockwell Automation’s Pavilion 8 is letting anyone and their grandmother play admin with this juicy privilege escalation flaw. Time to update or at least lock the door!
Key Points:
- Rockwell Automation’s Pavilion 8 has a critical vulnerability (CVSS v4 score of 8.7).
- This flaw allows low-complexity remote exploitation and privilege escalation.
- Versions 5.15.00 to 5.20.00 are affected.
- Attackers can create new users and access sensitive data.
- Updating to Pavilion 8 version 6.0 or greater is strongly recommended.
Already a member? Log in here