CVE-2024-9412

Vulnerability Description

An improper authorization vulnerability exists in the Rockwell Automation affected products that could allow an unauthorized user to sign in. While removal of all role mappings is unlikely, it could occur in the case of unexpected or accidental removal by the administrator. If exploited, an unauthorized user could access data they previously but should no longer have access to.

Related Weaknesses (CWE)

CWE-842

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/adviso

FAQ

What is CVE-2024-9412?

CVE-2024-9412 is a documented vulnerability. An improper authorization vulnerability exists in the Rockwell Automation affected products that could allow an unauthorized user to sign in. While removal of all role mappings is unlikely, it could o...

How severe is CVE-2024-9412?

CVSS scoring is not yet available for CVE-2024-9412. Check NVD for updates.

Is there a patch for CVE-2024-9412?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.