CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-4531

Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 does not invalidate credentials upon a logout action, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.056

EPSS Ranking 89.8%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/92135
https://ics-cert.us-cert.gov/advisories/ICSA-16-173-03
http://www.securityfocus.com/bid/92135
https://ics-cert.us-cert.gov/advisories/ICSA-16-173-03

Products affected by CVE-2016-4531

Rockwellautomation » Factorytalk Energrymetrix » Version: 2.10.00

cpe:2.3:a:rockwellautomation:factorytalk_energrymetrix:2.10.00

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-4531

Products

Pricing

Contact Us