Sign-up

ID

VAR-201712-0255


CVE

CVE-2017-14022


TITLE

Rockwell Automation FactoryTalk Alarms and Events Denial of service vulnerability

Trust: 0.8

sources: IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1 // CNVD: CNVD-2017-36876

DESCRIPTION

An Improper Input Validation issue was discovered in Rockwell Automation FactoryTalk Alarms and Events, Version 2.90 and earlier. An unauthenticated attacker with remote access to a network with FactoryTalk Alarms and Events can send a specially crafted set of packets packet to Port 403/TCP (the history archiver service), causing the service to either stall or terminate. Rockwell Automation is a solution provider for industrial automation, control and information technology. An attacker can exploit this issue to cause denial-of-service condition. FactoryTalk Alarms and Events 2.90 and prior are vulnerable. Rockwell Automation Studio 5000 Logix Designer, FactoryTalk View SE and FactoryTalk Services are all products of Rockwell Automation, USA. Rockwell Automation Studio 5000 Logix Designer is an application program used to configure and maintain the controller; FactoryTalk View SE is a set of human-machine interface software; FactoryTalk Services is a set of production and performance management platform. The following products and versions are affected: Rockwell Automation Studio 5000 Logix Designer 24 and later, FactoryTalk View SE version 5.00, FactoryTalk Services

Trust: 2.7

sources: NVD: CVE-2017-14022 // JVNDB: JVNDB-2017-011691 // CNVD: CNVD-2017-36876 // BID: 102114 // IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1 // VULHUB: VHN-104703

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1 // CNVD: CNVD-2017-36876

AFFECTED PRODUCTS

vendor:rockwellautomationmodel:factorytalk alarms and eventsscope:lteversion:2.90

Trust: 1.0

vendor:rockwell automationmodel:factorytalk alarms and eventsscope:lteversion:2.90

Trust: 0.8

vendor:rockwellmodel:automation factorytalk alarms and eventscope:eqversion:2.90

Trust: 0.6

vendor:rockwellmodel:automation studio logix designerscope:eqversion:5000>=24

Trust: 0.6

vendor:rockwellmodel:automation factorytalk view sescope:gteversion:5.00

Trust: 0.6

vendor:rockwellmodel:automation factorytalk servicesscope: - version: -

Trust: 0.6

vendor:rockwellautomationmodel:factorytalk alarms and eventsscope:eqversion:2.90

Trust: 0.6

vendor:rockwellmodel:automation studio logix designerscope:eqversion:500024

Trust: 0.3

vendor:rockwellmodel:automation factorytalk view sescope:eqversion:5.00

Trust: 0.3

vendor:rockwellmodel:automation factorytalk servicesscope:eqversion:0

Trust: 0.3

vendor:rockwellmodel:automation factorytalk alarms and eventsscope:eqversion:2.90

Trust: 0.3

vendor:factorytalk alarms and eventsmodel: - scope:eqversion:*

Trust: 0.2

sources: IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1 // CNVD: CNVD-2017-36876 // BID: 102114 // JVNDB: JVNDB-2017-011691 // CNNVD: CNNVD-201708-1253 // NVD: CVE-2017-14022

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-14022
value: HIGH

Trust: 1.0

NVD: CVE-2017-14022
value: HIGH

Trust: 0.8

CNVD: CNVD-2017-36876
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201708-1253
value: HIGH

Trust: 0.6

IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1
value: HIGH

Trust: 0.2

VULHUB: VHN-104703
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-14022
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2017-36876
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-104703
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-14022
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1 // CNVD: CNVD-2017-36876 // VULHUB: VHN-104703 // JVNDB: JVNDB-2017-011691 // CNNVD: CNNVD-201708-1253 // NVD: CVE-2017-14022

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

sources: VULHUB: VHN-104703 // JVNDB: JVNDB-2017-011691 // NVD: CVE-2017-14022

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201708-1253

TYPE

Input validation error

Trust: 0.8

sources: IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1 // CNNVD: CNNVD-201708-1253

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-011691

PATCH
title:Top Pageurl:http://www.rockwellautomation.com/
Trust: 0.8
title:Rockwell Automation FactoryTalk Alarms and Events Denial of Service Vulnerability Patchurl:https://www.cnvd.org.cn/patchInfo/show/109845
Trust: 0.6
title:Multiple Rockwell Automation product FactoryTalk Alarms and Events Enter the fix for the verification vulnerabilityurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=100014
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2017-36876 // 
            
            
            
            JVNDB: JVNDB-2017-011691 // 
            
            
            
            CNNVD: CNNVD-201708-1253

EXTERNAL IDS
db:NVDid:CVE-2017-14022
Trust: 3.6
db:ICS CERTid:ICSA-17-341-02
Trust: 3.4
db:BIDid:102114
Trust: 2.6
db:CNNVDid:CNNVD-201708-1253
Trust: 0.9
db:CNVDid:CNVD-2017-36876
Trust: 0.8
db:JVNDBid:JVNDB-2017-011691
Trust: 0.8
db:IVDid:E2DF0BCF-39AB-11E9-AC47-000C29342CB1
Trust: 0.2
db:VULHUBid:VHN-104703
Trust: 0.1
sources:
            
            
            IVD: e2df0bcf-39ab-11e9-ac47-000c29342cb1 // 
            
            
            
            CNVD: CNVD-2017-36876 // 
            
            
            
            VULHUB: VHN-104703 // 
            
            
            
            BID: 102114 // 
            
            
            
            JVNDB: JVNDB-2017-011691 // 
            
            
            
            CNNVD: CNNVD-201708-1253 // 
            
            
            
            NVD: CVE-2017-14022

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsa-17-341-02
Trust: 3.4
url:http://www.securityfocus.com/bid/102114
Trust: 2.3
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-14022
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-14022
Trust: 0.8
url:http://www.rockwellautomation.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2017-36876 // 
            
            
            
            VULHUB: VHN-104703 // 
            
            
            
            BID: 102114 // 
            
            
            
            JVNDB: JVNDB-2017-011691 // 
            
            
            
            CNNVD: CNNVD-201708-1253 // 
            
            
            
            NVD: CVE-2017-14022

CREDITS
A major Oil and Gas company
Trust: 0.3
sources:
            
            
            BID: 102114

SOURCES
db:IVDid:e2df0bcf-39ab-11e9-ac47-000c29342cb1
db:CNVDid:CNVD-2017-36876
db:VULHUBid:VHN-104703
db:BIDid:102114
db:JVNDBid:JVNDB-2017-011691
db:CNNVDid:CNNVD-201708-1253
db:NVDid:CVE-2017-14022

LAST UPDATE DATE
2025-04-20T23:03:54.941000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2017-36876date:2017-12-12T00:00:00
db:VULHUBid:VHN-104703date:2019-10-09T00:00:00
db:BIDid:102114date:2017-12-19T22:01:00
db:JVNDBid:JVNDB-2017-011691date:2018-01-24T00:00:00
db:CNNVDid:CNNVD-201708-1253date:2019-10-17T00:00:00
db:NVDid:CVE-2017-14022date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:IVDid:e2df0bcf-39ab-11e9-ac47-000c29342cb1date:2017-12-12T00:00:00
db:CNVDid:CNVD-2017-36876date:2017-12-12T00:00:00
db:VULHUBid:VHN-104703date:2017-12-23T00:00:00
db:BIDid:102114date:2017-12-07T00:00:00
db:JVNDBid:JVNDB-2017-011691date:2018-01-24T00:00:00
db:CNNVDid:CNNVD-201708-1253date:2017-08-31T00:00:00
db:NVDid:CVE-2017-14022date:2017-12-23T00:29:13.230