Rockwell.FactoryTalk.View.SE.SCADA.Remote.Code.Upload
Description
This indicates an attack attempt against an Remote Code Execution vulnerability in FactoryTalk View.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted request. A remote attacker can exploit this to execute arbitrary code within the context of the target system.
Affected Products
FactoryTalk View
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
For Rockwell customers please follow advised mitigation guidelines in following link:
ttps://rockwellautomation.custhelp.com/app/answers/detail/a_id/1126944
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |