CVE-2021-27473: Rockwell Automation Connected Components Workbench Improper Input Validation
First published: Wed Mar 23 2022(Updated: )
Rockwell Automation Connected Components Workbench v12.00.00 and prior does not sanitize paths specified within the .ccwarc archive file during extraction. This type of vulnerability is also commonly referred to as a Zip Slip. A local, authenticated attacker can create a malicious .ccwarc archive file that, when opened by Connected Components Workbench, will allow the attacker to gain the privileges of the software. If the software is running at SYSTEM level, the attacker will gain admin level privileges. User interaction is required for this exploit to be successful.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Rockwellautomation Connected Components Workbench | <=12.00.00 | |
| Rockwell Automation Connected Components Workbench v12.00.00 and prior |
Remedy
Rockwell Automation recommends users of the affected software update to an available software revision (Connected Components Workbench v13.00.00 or later) that addresses the associated risk.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/title
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/author
- agent/description
- agent/first-publish-date
- agent/tags
- agent/event
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/rockwellautomation
- canonical/rockwellautomation connected components workbench
- version/rockwellautomation connected components workbench/12.00.00
- vendor/rockwell automation
- canonical/rockwell automation connected components workbench v12.00.00 and prior