CVE-2021-27472 - Claroty

Our new Biannual ICS Risk & Vulnerability Report is the most up-to-date look at CVEs disclosed in OT devices. • Check it out!

CVE-2021-27472

SQL INJECTION CWE-89
A vulnerability exists in the RunSearch function of SearchService service, which may allow for the execution of remote unauthenticated arbitrary SQL statements.

Read more: Critical Vulnerabilities Found in Rockwell FactoryTalk AssetCentre

Risk Information

CVE ID
CVE-2021-27472
Vendor
Rockwell Automation
Product
FactoryTalk AssetCentre
CVSS v3
10