Arbitrary Code Injection Vulnerability in Rockwell Automation Allen-Bradley PowerMonitor 1000

Arbitrary Code Injection Vulnerability in Rockwell Automation Allen-Bradley PowerMonitor 1000

CVE-2018-19615 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Rockwell Automation Allen-Bradley PowerMonitor 1000 all versions. A remote attacker could inject arbitrary code into a targeted user’s web browser to gain access to the affected device.

Learn more about our Web App Pen Testing.