ID
VAR-202104-1942
CVE
CVE-2021-27476
TITLE
Rockwell Automation Made FactoryTalk AssetCentre Multiple vulnerabilities in
Trust: 0.8
DESCRIPTION
A vulnerability exists in the SaveConfigFile function of the RACompare Service, which may allow for OS command injection. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier. Rockwell Automation Provided by the company FactoryTalk AssetCentre The following multiple vulnerabilities exist in. * Deserialize untrusted data (CWE-502) - CVE-2021-27470 , CVE-2021-27466 , CVE-2021-27462 , CVE-2021-27460 ‥ * Use of potentially dangerous functions (CWE-676) - CVE-2021-27474 ‥ * OS Command injection (CWE-78) - CVE-2021-27476 ‥ * SQL injection (CWE-89) - CVE-2021-27472 , CVE-2021-27468 , CVE-2021-27464The expected impact depends on each vulnerability, but it may be affected as follows. * Arbitrary command executed by an unauthenticated remote third party - CVE-2021-27476 , CVE-2021-27470 , CVE-2021-27466 , CVE-2021-27462 ‥ * By an unauthenticated remote third party FactoryTalk AssetCentre Confidential data is changed - CVE-2021-27474 ‥ * Any by an unauthenticated remote third party SQL The statement is executed - CVE-2021-27472 , CVE-2021-27468 , CVE-2021-27464 ‥ * By an unauthenticated remote third party FactoryTalk AssetCentre Accessed to main server and all agent machines - CVE-2021-27460. Rockwell Automation FactoryTalk AssetCentre is an asset management software tool launched by Rockwell Automation, USA, which can be used by manufacturers and industrial enterprises for centralized management of controllers and other automation-related assets
Trust: 2.34
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | rockwellautomation | model: | factorytalk assetcentre | scope: | lte | version: | 10.00 | Trust: 1.0 |
| vendor: | rockwell automation | model: | factorytalk asset centre | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | rockwell automation | model: | factorytalk asset centre | scope: | lte | version: | v10.00 and earlier | Trust: 0.8 |
| vendor: | rockwell | model: | automation factorytalk assetcentre | scope: | lte | version: | <=10.00 | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-78 | Trust: 1.1 |
| problemtype: | Deserialization of untrusted data (CWE-502) [IPA Evaluation ] | Trust: 0.8 |
| problemtype: | Use of potentially dangerous functions (CWE-676) [IPA Evaluation ] | Trust: 0.8 |
| problemtype: | OS Command injection (CWE-78) [IPA Evaluation ] | Trust: 0.8 |
| problemtype: | SQL injection (CWE-89) [IPA Evaluation ] | Trust: 0.8 |
THREAT TYPE
remote
Trust: 0.6
TYPE
operating system commend injection
Trust: 0.6
PATCH
| title: | QA46277 (Login required) | url: | https://idp.rockwellautomation.com/adfs/ls/idpinitiatedsignon.aspx?RelayState=RPID%3Drockwellautomation.custhelp.com%26RelayState%3Danswers%2Fanswer_view%2Fa_id%2F1130831 | Trust: 0.8 |
| title: | Patch for Rockwell Automation FactoryTalk AssetCentre OS command injection vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/257326 | Trust: 0.6 |
| title: | Rockwell Automation FactoryTalk AssetCentre Fixes for operating system command injection vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=146610 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2021-27476 | Trust: 3.2 |
| db: | ICS CERT | id: | ICSA-21-091-01 | Trust: 3.1 |
| db: | JVN | id: | JVNVU93112256 | Trust: 0.8 |
| db: | JVNDB | id: | JVNDB-2021-001308 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202104-058 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2021-26402 | Trust: 0.6 |
| db: | AUSCERT | id: | ESB-2021.1134 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-386743 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2021-27476 | Trust: 0.1 |
REFERENCES
| url: | https://us-cert.cisa.gov/ics/advisories/icsa-21-091-01 | Trust: 2.0 |
| url: | https://idp.rockwellautomation.com/adfs/ls/idpinitiatedsignon.aspx?relaystate=rpid%3drockwellautomation.custhelp.com%26relaystate%3danswers%2fanswer_view%2fa_id%2f1130831 | Trust: 1.7 |
| url: | https://www.cisa.gov/uscert/ics/advisories/icsa-21-091-01 | Trust: 1.7 |
| url: | http://jvn.jp/cert/jvnvu93112256 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2021-27476/ | Trust: 0.6 |
| url: | https://www.auscert.org.au/bulletins/esb-2021.1134 | Trust: 0.6 |
| url: | https://exchange.xforce.ibmcloud.com/vulnerabilities/199263 | Trust: 0.1 |
SOURCES
| db: | CNVD | id: | CNVD-2021-26402 |
| db: | VULHUB | id: | VHN-386743 |
| db: | VULMON | id: | CVE-2021-27476 |
| db: | JVNDB | id: | JVNDB-2021-001308 |
| db: | CNNVD | id: | CNNVD-202104-058 |
| db: | NVD | id: | CVE-2021-27476 |
LAST UPDATE DATE
2024-08-14T13:54:05.249000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2021-26402 | date: | 2021-04-12T00:00:00 |
| db: | VULHUB | id: | VHN-386743 | date: | 2022-03-30T00:00:00 |
| db: | JVNDB | id: | JVNDB-2021-001308 | date: | 2021-04-05T06:09:00 |
| db: | CNNVD | id: | CNNVD-202104-058 | date: | 2022-03-31T00:00:00 |
| db: | NVD | id: | CVE-2021-27476 | date: | 2022-03-30T16:45:13.283 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2021-26402 | date: | 2021-04-09T00:00:00 |
| db: | VULHUB | id: | VHN-386743 | date: | 2022-03-23T00:00:00 |
| db: | JVNDB | id: | JVNDB-2021-001308 | date: | 2021-04-05T00:00:00 |
| db: | CNNVD | id: | CNNVD-202104-058 | date: | 2021-04-01T00:00:00 |
| db: | NVD | id: | CVE-2021-27476 | date: | 2022-03-23T20:15:09.327 |