Vulnerability Description
In Rockwell Automation FactoryTalk Services Platform 2.90 and earlier, a remote unauthenticated attacker could send numerous crafted packets to service ports resulting in memory consumption that could lead to a partial or complete denial-of-service condition to the affected services.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rockwellautomation | Factorytalk Services Platform | <= 2.90 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/106279Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-18-331-02Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/106279Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-18-331-02Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2018-18981?
CVE-2018-18981 is a vulnerability with a CVSS score of 7.5 (HIGH). In Rockwell Automation FactoryTalk Services Platform 2.90 and earlier, a remote unauthenticated attacker could send numerous crafted packets to service ports resulting in memory consumption that could...
How severe is CVE-2018-18981?
CVE-2018-18981 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-18981?
Check the references section above for vendor advisories and patch information. Affected products include: Rockwellautomation Factorytalk Services Platform.