Security Warnings

Classification
These posts contain security warnings, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Most Viewed Warnings

● High

Zoom Update

● Critical

Security issues in the Mail App on iPhone and iPad

● Critical

Cisco’s Webex Phishing Campaigns

● Critical

Microsoft Updates

● High

Apple Updates

● Critical

Rockwell Automation Update

152

Warning Date: 4 April, 2021

Severity Level ● Critical

Warning Number: 2021-2714

Target Sector: Manufacturing

Description:

Rockwell Automation has released security updates to address several vulnerabilities in the following product:

  • FactoryTalk AssetCentre, v10.00 and earlier

Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • SQL Injection
  • Execute arbitrary code -remotely

Best practice and Recommendations:

The CERT team encourages users to review Rockwell Automation security advisory and apply the necessary updates:

Last updated at 4 April, 2021