CVE-2020-14481

The DeskLock tool provided with FactoryTalk View SE uses a weak encryption algorithm that may allow a local, authenticated attacker to decipher user credentials, including the Windows user or Windows DeskLock passwords. If the compromised user has an administrative account, an attacker could gain full access to the user’s operating system and certain components of FactoryTalk View SE.

CVSS v3 7.8 HIGH
CVSS v2.0 2.1 LOW

7.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

2.1^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-20-177-03	Mitigation Third Party Advisory US Government Resource

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:rockwellautomation:factorytalk_view:::::se:::*
	cpe:2.3:a:rockwellautomation:factorytalk_view:10.0::::se:::

History

04 Mar 2022, 18:28

Type	Values Removed	Values Added
CWE		CWE-326
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 2.1 v3 : 7.8
CPE		cpe:2.3:a:rockwellautomation:factorytalk_view:::::se:::* cpe:2.3:a:rockwellautomation:factorytalk_view:10.0::::se:::
First Time		Rockwellautomation factorytalk View Rockwellautomation
References	~~(MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-20-177-03 -~~	(MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-20-177-03 - Mitigation, Third Party Advisory, US Government Resource

24 Feb 2022, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-02-24 19:15

Updated : 2023-12-10 14:22

NVD link : CVE-2020-14481

Mitre link : CVE-2020-14481

CVE.ORG link : CVE-2020-14481

JSON object : View

Products Affected

rockwellautomation

factorytalk_view

CWE

CWE-326

Inadequate Encryption Strength

CWE-261

Weak Encoding for Password

{"id": "CVE-2020-14481", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2022-02-24T19:15:08.853", "references": [{"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-20-177-03", "tags": ["Mitigation", "Third Party Advisory", "US Government Resource"], "source": "ics-cert@hq.dhs.gov"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-326"}]}, {"type": "Secondary", "source": "ics-cert@hq.dhs.gov", "description": [{"lang": "en", "value": "CWE-261"}]}], "descriptions": [{"lang": "en", "value": "The DeskLock tool provided with FactoryTalk View SE uses a weak encryption algorithm that may allow a local, authenticated attacker to decipher user credentials, including the Windows user or Windows DeskLock passwords. If the compromised user has an administrative account, an attacker could gain full access to the user\u2019s operating system and certain components of FactoryTalk View SE."}, {"lang": "es", "value": "La herramienta DeskLock proporcionada con FactoryTalk View SE usa un algoritmo de cifrado d\u00e9bil que puede permitir a un atacante local y autenticado descifrar las credenciales de usuario, incluyendo el usuario de Windows o las contrase\u00f1as de Windows DeskLock. Si el usuario comprometido presenta una cuenta administrativa, un atacante podr\u00eda conseguir acceso completo al sistema operativo del usuario y a determinados componentes de FactoryTalk View SE"}], "lastModified": "2022-03-04T18:28:11.570", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rockwellautomation:factorytalk_view:*:*:*:*:se:*:*:*", "vulnerable": true, "matchCriteriaId": "CFDFC2EF-3BD1-43A7-8891-B5282CED71EF", "versionEndIncluding": "9.0"}, {"criteria": "cpe:2.3:a:rockwellautomation:factorytalk_view:10.0:*:*:*:se:*:*:*", "vulnerable": true, "matchCriteriaId": "B2D57C54-FAF6-494A-8B44-AC113392606C"}], "operator": "OR"}]}], "sourceIdentifier": "ics-cert@hq.dhs.gov"}