CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29463

The JMX Console within the Rockwell Automation Pavilion8 is exposed to application users and does not require authentication. If exploited, a malicious user could potentially retrieve other application users’ session data and or log users out of their session.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.2%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2023-29463

Rockwellautomation » Pavilion8 » Version: N/A

cpe:2.3:a:rockwellautomation:pavilion8:-
Rockwellautomation » Pavilion8 » Version: 5.15.00

cpe:2.3:a:rockwellautomation:pavilion8:5.15.00
Rockwellautomation » Pavilion8 » Version: 5.15.01

cpe:2.3:a:rockwellautomation:pavilion8:5.15.01
Rockwellautomation » Pavilion8 » Version: 5.16.00

cpe:2.3:a:rockwellautomation:pavilion8:5.16.00
Rockwellautomation » Pavilion8 » Version: 5.17.00

cpe:2.3:a:rockwellautomation:pavilion8:5.17.00
Rockwellautomation » Pavilion8 » Version: 5.17.01

cpe:2.3:a:rockwellautomation:pavilion8:5.17.01

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29463

Products

Pricing

Contact Us