What is the severity of CVE-2021-27468?

CVE-2021-27468 has a high severity rating due to its potential for remote exploitation by unauthorized users.

How do I fix CVE-2021-27468?

To fix CVE-2021-27468, update your Rockwell Automation FactoryTalk AssetCentre to a version later than 10.00 that includes proper authentication measures.

What are the risks associated with CVE-2021-27468?

The risks associated with CVE-2021-27468 include unauthorized execution of arbitrary SQL statements which can lead to data leakage or manipulation.

Can CVE-2021-27468 be exploited remotely?

Yes, CVE-2021-27468 can be exploited remotely by unauthenticated attackers due to the lack of proper authentication measures.

Vulnerability/
CVE-2021-27468

critical

CWE

23/3/2022

3/8/2024

CVE-2021-27468: Rockwell Automation FactoryTalk AssetCentre SQL Injection

Q: Which versions of FactoryTalk AssetCentre are affected by CVE-2021-27468?

CVE-2021-27468 affects Rockwell Automation FactoryTalk AssetCentre version 10.00 and earlier.

First published: Wed Mar 23 2022(Updated: )

The AosService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier exposes functions lacking proper authentication. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary SQL statements.

Credit: ics-cert@hq.dhs.gov

Affected Software	Affected Version	How to fix
Rockwell Automation FactoryTalk AssetCentre
rockwellautomation FactoryTalk AssetCentre	<=10.00

Remedy

Rockwell Automation encourages users of the affected versions of FactoryTalk AssetCentre to update to AssetCentre v11 (or above) to addresses these vulnerabilities. For more information about these vulnerabilities and mitigations please see Rockwell Automation’s publication KnowledgeBase ID: PN1559

Remedy

As an additional mitigation, Rockwell Automation encourages users who are unable to upgrade or are concerned about unauthorized client connections to use built in security features found within FactoryTalk AssetCentre. Users should follow guidance found in QA46277. IPsec would minimize exposure to unauthorized clients and has been tested in FactoryTalk AssetCentre v9-v11

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

ICSA-21-091-01

Frequently Asked Questions

What is the severity of CVE-2021-27468?
CVE-2021-27468 has a high severity rating due to its potential for remote exploitation by unauthorized users.
How do I fix CVE-2021-27468?
To fix CVE-2021-27468, update your Rockwell Automation FactoryTalk AssetCentre to a version later than 10.00 that includes proper authentication measures.
What are the risks associated with CVE-2021-27468?
The risks associated with CVE-2021-27468 include unauthorized execution of arbitrary SQL statements which can lead to data leakage or manipulation.
Which versions of FactoryTalk AssetCentre are affected by CVE-2021-27468?
CVE-2021-27468 affects Rockwell Automation FactoryTalk AssetCentre version 10.00 and earlier.
Can CVE-2021-27468 be exploited remotely?
Yes, CVE-2021-27468 can be exploited remotely by unauthenticated attackers due to the lack of proper authentication measures.

agent/type
collector/mitre-cve
source/MITRE
agent/remedy
agent/severity
agent/title
agent/weakness
agent/references
agent/last-modified-date
agent/author
agent/description
agent/first-publish-date
agent/event
agent/trending
agent/source
collector/ics-cert-advisory
source/ICS
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/nvd-index
vendor/rockwell automation
canonical/rockwell automation factorytalk assetcentre
vendor/rockwellautomation
canonical/rockwellautomation factorytalk assetcentre
version/rockwellautomation factorytalk assetcentre/10.00

Frequently Asked Questions

What is the severity of CVE-2021-27468?
CVE-2021-27468 has a high severity rating due to its potential for remote exploitation by unauthorized users.
How do I fix CVE-2021-27468?
To fix CVE-2021-27468, update your Rockwell Automation FactoryTalk AssetCentre to a version later than 10.00 that includes proper authentication measures.
What are the risks associated with CVE-2021-27468?
The risks associated with CVE-2021-27468 include unauthorized execution of arbitrary SQL statements which can lead to data leakage or manipulation.
Which versions of FactoryTalk AssetCentre are affected by CVE-2021-27468?
CVE-2021-27468 affects Rockwell Automation FactoryTalk AssetCentre version 10.00 and earlier.
Can CVE-2021-27468 be exploited remotely?
Yes, CVE-2021-27468 can be exploited remotely by unauthenticated attackers due to the lack of proper authentication measures.

CVE-2021-27468: Rockwell Automation FactoryTalk AssetCentre SQL Injection

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2021-27468?

How do I fix CVE-2021-27468?

What are the risks associated with CVE-2021-27468?

Which versions of FactoryTalk AssetCentre are affected by CVE-2021-27468?

Can CVE-2021-27468 be exploited remotely?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2021-27468?

How do I fix CVE-2021-27468?

What are the risks associated with CVE-2021-27468?

Which versions of FactoryTalk AssetCentre are affected by CVE-2021-27468?

Can CVE-2021-27468 be exploited remotely?