CVE-2021-27472

SQL INJECTION CWE-89
A vulnerability exists in the RunSearch function of SearchService service, which may allow for the execution of remote unauthenticated arbitrary SQL statements.

Read more: Critical Vulnerabilities Found in Rockwell FactoryTalk AssetCentre

Risk Information

  • CVE ID
  • CVE-2021-27472
  • Vendor
  • Rockwell Automation
  • Product
  • FactoryTalk AssetCentre
  • CVSS v3
  • 10