June 14, 2024 at 06:39AM
Rockwell Automation has addressed three high-severity vulnerabilities in its FactoryTalk View Site Edition (SE) HMI software, including an authentication issue and a local privilege escalation vulnerability. These flaws have been patched in version 14, with advisories published by both Rockwell and CISA. Additionally, a vulnerability affecting certain controllers has also been disclosed.
Based on the meeting notes, the key takeaways are:
1. Rockwell Automation has patched three high-severity vulnerabilities in its FactoryTalk View Site Edition (SE) HMI software, addressing issues related to user authentication, information leakage, and local privilege escalation.
2. The vulnerabilities have been addressed in the release of version 14 of the software.
3. The Cybersecurity and Infrastructure Security Agency (CISA) has also published advisories to inform organizations about these vulnerabilities in FactoryTalk View SE.
4. In addition to the FactoryTalk View SE vulnerabilities, Rockwell Automation also notified customers about a vulnerability affecting some of its controllers, causing them to enter a nonrecoverable fault condition by sending specially crafted packets to the mDNS port.
5. Rockwell Automation has urged customers to ensure that their industrial control systems (ICS) are not connected to the internet and exposed to cyber threats.
These takeaways highlight the important security updates and advisories provided by Rockwell Automation, as well as the proactive measures recommended to secure industrial control systems.