Article - CS335670

PTC vulnerabilities in Kepware LinkMaster

Modified: 11-Jan-2021   


Applies To

  • LinkMaster 3.0.70.0 N/A to 3.0.94.0 N/A
  • An ICS advisory has been published regarding the vulnerability by CISA

Description

  • PTC has become aware of vulnerabilities in the Kepware LinkMaster product
  • Should a malicious actor gain access to the customer’s Kepware LinkMaster application and perform a successful attack, this vulnerability could allow a local attacker to globally overwrite the service configuration to execute arbitrary code with NT SYSTEM privileges
    This is a printer-friendly version of Article 335670 and may be out of date. For the latest version click CS335670