CVE-2021-22665

UNCONTROLLED SEARCH PATH ELEMENT CWE-427
DriveTools and Drives AOP both contain a vulnerability that a local attacker with limited privileges may be able to exploit resulting in privilege escalation and complete control of the system.

Risk Information

  • CVE ID
  • CVE-2021-22665
  • Vendor
  • Rockwell Automation
  • Product
  • DriveTools SP, Drives AOP
  • CVSS v3
  • 7.5