CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29026

A cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause interruptions to the availability of the web page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.8%

CVSS Severity

CVSS v3 Score 4.7

References

Products affected by CVE-2023-29026

Rockwellautomation » Armorstart St 281e » Version: N/A

cpe:2.3:h:rockwellautomation:armorstart_st_281e:-
Rockwellautomation » Armorstart St 284ee » Version: N/A

cpe:2.3:h:rockwellautomation:armorstart_st_284ee:-
Rockwellautomation » Armorstart St 281e Firmware » Version: N/A

cpe:2.3:o:rockwellautomation:armorstart_st_281e_firmware:-
Rockwellautomation » Armorstart St 284ee Firmware » Version: N/A

cpe:2.3:o:rockwellautomation:armorstart_st_284ee_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29026

Products

Pricing

Contact Us