CVE-2018-10619

HIGH

RSLinx Classic <3.90.01 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-10619. PoCs published by LiquidWorm.

AI-analyzed exploit summary The exploit describes an unquoted search path vulnerability in the 'dnwhodisp' service of Rockwell Automation RSLinx Classic and FactoryTalk Linx Gateway, allowing local privilege escalation via arbitrary code execution with elevated privileges.

Description

An unquoted search path or element in RSLinx Classic Versions 3.90.01 and prior and FactoryTalk Linx Gateway Versions 3.90.00 and prior may allow an authorized, but non-privileged local user to execute arbitrary code and allow a threat actor to escalate user privileges on the affected workstation.

Exploits (1)

exploitdb WRITEUP
by LiquidWorm · textlocalwindows
https://www.exploit-db.com/exploits/44892

The exploit describes an unquoted search path vulnerability in the 'dnwhodisp' service of Rockwell Automation RSLinx Classic and FactoryTalk Linx Gateway, allowing local privilege escalation via arbitrary code execution with elevated privileges.

Classification
Writeup 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Theoretical
Target: Rockwell Automation RSLinx Classic (versions 3.90.01, 3.73.00, 3.72.00, 2.58.00) and FactoryTalk Linx Gateway 3.90.00
Auth required
Prerequisites: Local access to the system · Ability to insert executable code in the system root path
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/44892/
Third Party Advisory, US Government Resource, VDB Entry x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-18-158-01
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/104415

Scores

CVSS v3 7.8
EPSS 0.0276
EPSS Percentile 84.3%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-428
Status published
Products (2)
rockwellautomation/factorytalk_linx_gateway < 3.90.00
rockwellautomation/rslinx_classic < 3.90.01
Published Jun 07, 2018
Tracked Since Feb 18, 2026