CVE-2024-6078

Vulnerability Description

CVE-2024-6078 IMPACT An improper authentication vulnerability exists in the affected product, which could allow a malicious user to generate cookies for any user ID without the use of a username or password. If exploited, a malicious user could take over the account of a legitimate user. The malicious user would be able to view and modify data stored in the cloud.

Related Weaknesses (CWE)

CWE-287

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/adviso

FAQ

What is CVE-2024-6078?

CVE-2024-6078 is a documented vulnerability. CVE-2024-6078 IMPACT An improper authentication vulnerability exists in the affected product, which could allow a malicious user to generate cookies for any user ID without the use of a username or p...

How severe is CVE-2024-6078?

CVSS scoring is not yet available for CVE-2024-6078. Check NVD for updates.

Is there a patch for CVE-2024-6078?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.