Article - CS423892

Security vulnerability identified in PTC Kepware Products - CVE-2024-6098

Modified: 15-Aug-2024   


Applies To

  • ThingWorx Kepware Server 8.0 to 6.16
  • KEPServerEX 6.0.2107.0 to 6.16
  • TOP Server 6.0.2107.0 to 6.16
  • GE Industrial Gateway Server 7.610 to 7.616

Description

  • When performing an online tag generation to devices which communicate using the ControlLogix protocol, a machine-in-the-middle, or a device that is not configured correctly, could deliver a response leading to unrestricted or unregulated resource allocation
  • By default, these functions are turned off, yet they remain accessible for users who recognize and require their advantages
This is a printer-friendly version of Article 423892 and may be out of date. For the latest version click CS423892