cvedb.io
CVE-2022-38744
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2022-10-27T14:15:10.777 · Last modified 2026-06-17T04:57:06.170

Summary

An unauthenticated attacker with network access to a victim's Rockwell Automation FactoryTalk Alarm and Events service could open a connection, causing the service to fault and become unavailable. The affected port could be used as a server ping port and uses messages structured with XML.

Affected products

rockwellautomation — factorytalk_alarms_and_events

Does this affect you?

Add your gear to cvedb and we'll alert you only when rockwellautomation ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.