CVE-2014-9209

Untrusted search path vulnerability in the Clean Utility application in Rockwell Automation FactoryTalk Services Platform before 2.71.00 and FactoryTalk View Studio 8.00.00 and earlier allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.

Published: Mar 31, 2015
Updated: Apr 13, 2023
CVE: CVE-2014-9209
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
rockwellautomation / factorytalk_view_studio	-	8.00.00.x
rockwellautomation / factorytalk_services_platform	-	2.70.00.x

https://ics-cert.us-cert.gov/advisories/ICSA-15-062-02
https://rockwellautomation.custhelp.com/app/answers/detail/a_id/646323

Vulnerability Database

289,871

CVE-2014-9209