The NCCIC has published an advisory on an improper access control vulnerability in Rockwell Automation PanelView 5510. All versions manufactured before March 13, 2019, that have never been updated to v4.003, v5.002, or later, are affected. Successful exploitation of this vulnerability could allow a remote unauthenticated user to gain root privileges on the device. Rockwell Automation encourages users of the affected products to update to an available revision that addresses the vulnerability. The NCCIC also advises of a series of measures for mitigating this vulnerability. Read the advisory at CISA.
H2OSecCon 2025- a virtual security event for the water sector - happening May 20th. Register Now!