CVE-2020-14516

CRITICAL

Rockwell Automation FactoryTalk Services Platform <6.11.00 - Info D...

Title source: llm

Description

In Rockwell Automation FactoryTalk Services Platform Versions 6.10.00 and 6.11.00, there is an issue with the implementation of the SHA-256 hashing algorithm with FactoryTalk Services Platform that prevents the user password from being hashed properly.

References (1)

[Third Party Advisory, US Government Resource] https://us-cert.cisa.gov/ics/advisories/icsa-21-054-01

Scores

CVSS v3 10.0

EPSS 0.0030

EPSS Percentile 53.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

CWE

CWE-916

Status published

Products (2)

rockwellautomation/factorytalk_services_platform 6.10.00

rockwellautomation/factorytalk_services_platform 6.11.00

Published Mar 18, 2021

Tracked Since Feb 18, 2026