CVE-2020-12033

IMPROPER INPUT VALIDATION CWE-20
The affected product’s redundancy host service (RdcyHost.exe) does not validate supplied identifiers, which could allow an unauthenticated, adjacent attacker to execute remote COM objects with elevated privileges.

Risk Information

  • CVE ID
  • CVE-2020-12033
  • Vendor
  • Rockwell Automation
  • Product
  • FactoryTalk Linx
  • CVSS v3
  • 7.5