{"vulnerability": "cve-2023-2902", "sightings": [{"uuid": "405b84c6-09c5-461b-bf9e-2beee0e4ddb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29026", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2954", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-29026\n\ud83d\udd39 Description: \nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product \n\nthat could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause interruptions to the availability of the web page.\n\n\n\n\n\ud83d\udccf Published: 2023-05-11T17:47:11.276Z\n\ud83d\udccf Modified: 2025-01-24T16:32:47.478Z\n\ud83d\udd17 References:\n1. https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1139438", "creation_timestamp": "2025-01-24T17:05:12.000000Z"}, {"uuid": "b0b05bd1-4245-4caa-b30a-87e2be7da45a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29024", "type": "seen", "source": "https://t.me/cibsecurity/63918", "content": "\u203c CVE-2023-29024 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product A cross site scripting vulnerability was discovered that could potentially allow a malicious user to view and modify sensitive data or make the web page unavailable. User interaction, such as a phishing attack, is required for successful exploitation of this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:20:43.000000Z"}, {"uuid": "1478f1f5-2c83-468a-82fc-6091ba3a1959", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29026", "type": "seen", "source": "https://t.me/cibsecurity/63915", "content": "\u203c CVE-2023-29026 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause interruptions to the availability of the web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:20:40.000000Z"}, {"uuid": "419d89d7-e28d-43dc-9117-4b7340f3f85b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29028", "type": "seen", "source": "https://t.me/cibsecurity/63914", "content": "\u203c CVE-2023-29028 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause interruptions to the availability of the web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:20:39.000000Z"}, {"uuid": "030f0fd6-fb24-48f0-8fc1-18e62cea3679", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29022", "type": "seen", "source": "https://t.me/cibsecurity/63913", "content": "\u203c CVE-2023-29022 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause interruptions to the availability of the web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:20:38.000000Z"}, {"uuid": "b9d76dad-d9db-4495-9ef9-2897270a127b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29025", "type": "seen", "source": "https://t.me/cibsecurity/63911", "content": "\u203c CVE-2023-29025 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause interruptions to the availability of the web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:20:36.000000Z"}, {"uuid": "32a1906b-8073-45e8-967a-f10a48352135", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29029", "type": "seen", "source": "https://t.me/cibsecurity/63908", "content": "\u203c CVE-2023-29029 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause interruptions to the availability of the web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:15:37.000000Z"}, {"uuid": "861f311e-1774-4cd9-a4af-889d04066771", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29023", "type": "seen", "source": "https://t.me/cibsecurity/63906", "content": "\u203c CVE-2023-29023 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user to view and modify sensitive data or make the web page unavailable. User interaction, such as a phishing attack, is required for successful exploitation of this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:15:36.000000Z"}]}