Denial of Service Vulnerability in Emerson GE Automation Proficy Machine Edition v8.0

Denial of Service Vulnerability in Emerson GE Automation Proficy Machine Edition v8.0

CVE-2021-29298 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

Improper Input Validation in Emerson GE Automation Proficy Machine Edition v8.0 allows an attacker to cause a denial of service and application crash via crafted traffic from a Man-in-the-Middle (MITM) attack to the component "FrameworX.exe"in the module "fxVPStatcTcp.dll".

Learn more about our Web Application Penetration Testing UK.