Rockwell Automation FactoryTalk Linx 6.11
Approved changes feed: RSS · Atom
cpe:2.3:a:rockwellautomation:factorytalk_linx:6.11:*:*:*:*:*:*:*
part: a version: 6.11 update: *
| Vendor | Rockwellautomation (483fb14e-bfe0-5dc5-b460-aca202063cba) |
|---|---|
| Product | Factorytalk Linx (c7f2542b-ab22-527a-80ab-3dde59f7791c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-12005 |
vulnerable | 2026-06-03 14:41:33.087318 |
Details available
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 and later, Studio 5000 Launcher: Version 31 and later Stud, 5000 Logix Designer software: Version 32 and prior is vulnerable. A vulnerability exists in the communication function that enables users to upload EDS files by FactoryTalk Linx. This may allow an attacker to upload a file with bad compression, consuming all the available CPU resources, leading to a denial-of-service condition.
Published: 2020-06-15T19:22:59.000Z
Updated: 2024-08-04T11:48:57.603Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-12003 |
vulnerable | 2026-06-03 14:41:33.086576 |
Details available
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 and later, Studio 5000 Launcher: Version 31 and later Stud, 5000 Logix Designer software: Version 32 and prior is vulnerable. An exposed API call allows users to provide files to be processed without sanitation. This may allow an attacker to use specially crafted requests to traverse the file system and expose sensitive data on the local hard drive.
Published: 2020-06-15T19:16:36.000Z
Updated: 2024-08-04T11:48:58.276Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-12001 |
vulnerable | 2026-06-03 14:41:33.083164 |
Details available
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 and later, Studio 5000 Launcher: Version 31 and later Stud, 5000 Logix Designer software: Version 32 and prior is vulnerable. The parsing mechanism that processes certain file types does not provide input sanitation. This may allow an attacker to use specially crafted files to traverse the file system and modify or expose sensitive data or execute arbitrary code.
Published: 2020-06-15T19:14:18.000Z
Updated: 2024-08-04T11:48:57.384Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11999 |
vulnerable | 2026-06-03 14:41:33.080422 |
Details available
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version 1 and later, FactoryTalk Asset Centre: Version 9 and later, FactoryTalk Linx CommDTM: Version 1 and later, Studio 5000 Launcher: Version 31 and later Stud, 5000 Logix Designer software: Version 32 and prior is vulnerable. An exposed API call allows users to provide files to be processed without sanitation. This may allow an attacker to specify a filename to execute unauthorized code and modify files or data.
Published: 2020-06-15T19:11:50.000Z
Updated: 2024-08-04T11:48:57.804Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.