Impact
The vulnerability is a race condition that allows a continuous stream of requests to the login endpoint to yield a valid authentication token, effectively bypassing the authentication process. An attacker who can send such requests can obtain unauthorized access to the FactoryTalk Historian Site Edition and any protected data or functions controlled by that system. This flaw enables full compromise of confidentiality and integrity for any data stored or processed by the affected instance.
Affected Systems
Rockwell Automation FactoryTalk Historian Site Edition is impacted. No explicit version list is provided in the advisory; however the vendor recommends upgrading to v12.00.00 or later to remediate the issue, implying that versions prior to v12.00.00 are exposed.
Risk and Exploitability
The CVSS score of 9.2 denotes a critical vulnerability. The EPSS score of less than 1% indicates a low probability of exploitation, but the absence from the KEV catalog means no known active exploitation. The likely attack vector is remote: an attacker can target the publicly exposed login endpoint from any network location capable of reaching the application. Because the flaw does not require any pre‑existing authentication, the exploitation effort is minimal and successful exploitation would grant the attacker full control of the affected system.
OpenCVE Enrichment