CVE-2020-12033
CVE-2020-12033
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
23 Jun 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In Rockwell Automation FactoryTalk Services Platform, all versions, the redundancy host service (RdcyHost.exe) does not validate supplied identifiers, which could allow an unauthenticated, adjacent attacker to execute remote COM objects with elevated privileges.
Affected products
n/a · Rockwell Automation FactoryTalk Services Platform