SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Rockwell Automation FactoryTalk Diagnostics Insecure Deserialization 2

Category: SCADA-ATTACKS      

In Rockwell Automation all versions of FactoryTalk Diagnostics software, a subsystem of the FactoryTalk Services Platform, FactoryTalk Diagnostics exposes a .NET Remoting endpoint via RNADiagnosticsSrv.exe at TCPtcp/8082, which can insecurely deserialize untrusted data.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6967


Relevant Information