CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7960

The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. The vulnerability exists due to having an incorrect privilege matrix that allows users to have access to functions they should not.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.3%

CVSS Severity

CVSS v3 Score 9.1

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1695.html

Products affected by CVE-2024-7960

Rockwellautomation » Pavilion8 » Version: N/A

cpe:2.3:a:rockwellautomation:pavilion8:-
Rockwellautomation » Pavilion8 » Version: 5.15.00

cpe:2.3:a:rockwellautomation:pavilion8:5.15.00
Rockwellautomation » Pavilion8 » Version: 5.15.01

cpe:2.3:a:rockwellautomation:pavilion8:5.15.01
Rockwellautomation » Pavilion8 » Version: 5.16.00

cpe:2.3:a:rockwellautomation:pavilion8:5.16.00
Rockwellautomation » Pavilion8 » Version: 5.17.00

cpe:2.3:a:rockwellautomation:pavilion8:5.17.00
Rockwellautomation » Pavilion8 » Version: 5.17.01

cpe:2.3:a:rockwellautomation:pavilion8:5.17.01
Rockwellautomation » Pavilion8 » Version: 5.20

cpe:2.3:a:rockwellautomation:pavilion8:5.20
Rockwellautomation » Pavilion8 » Version: 5.20.00

cpe:2.3:a:rockwellautomation:pavilion8:5.20.00

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7960

Products

Pricing

Contact Us