The JMX Console within the Rockwell Automation Pavilion8 is exposed to application users and does not require authentication. If exploited, a malicious user could potentially retrieve other application users’ session data and or log users out of their session.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Rockwell

Published: 2023-09-12T16:42:14.868Z

Updated: 2024-08-02T14:07:46.424Z

Reserved: 2023-04-06T18:42:59.008Z

Link: CVE-2023-29463

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-09-12T17:15:09.147

Modified: 2024-11-21T07:57:06.420

Link: CVE-2023-29463

cve-icon Redhat

No data.