CVE-2020-10642: 
Rockwell Automation RSLinx Classic vulnerability analysis and mitigation

In Rockwell Automation RSLinx Classic versions 4.11.00 and prior, a vulnerability was identified that affects PLC communications software. The vulnerability was discovered by William Knowles at Applied Risk who worked with Rockwell Automation. This security issue was assigned CVE-2020-10642 and primarily affects critical infrastructure sectors including Critical Manufacturing, Energy, and Water and Wastewater Systems (ICS Advisory).

The vulnerability is classified as an Incorrect Permission Assignment for Critical Resource (CWE-732). It received a CVSS v3.1 base score of 7.8 HIGH with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. The technical nature of the vulnerability involves registry key permissions that could be modified by an authenticated local attacker (NVD).

Successful exploitation of this vulnerability could allow a local authenticated attacker to execute malicious code using system privileges when opening RSLinx Classic. The vulnerability affects systems worldwide and has particular significance for critical infrastructure sectors (ICS Advisory).

For versions 3.60 to 4.11, Rockwell Automation recommends users apply patch 1091155. Users are encouraged to apply the most recent version of RSLinx Classic. Additional defensive measures include minimizing network exposure for control system devices, ensuring systems are not accessible from the Internet, and locating control system networks behind firewalls isolated from business networks (ICS Advisory).