CVE-2020-14480

Severity CVSS v4.0:
Pending analysis
Type:
CWE-312 Cleartext Storage of Sensitive Information
Publication date:
24/02/2022
Last modified:
17/04/2025

Description

Due to usernames/passwords being stored in plaintext in Random Access Memory (RAM), a local, authenticated attacker could gain access to certain credentials, including Windows Logon credentials.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:rockwellautomation:factorytalk_view:*:*:*:*:se:*:*:* 9.0 (including)
cpe:2.3:a:rockwellautomation:factorytalk_view:10.0:*:*:*:se:*:*:*