What the vulnerability does

01Description

HMI/SCADA iFIX (Versions 6.1 and prior) allows a local authenticated user to modify system-wide iFIX configurations through the registry. This may allow privilege escalation.

Key dates

02Disclosure timeline

February 18, 2021 CVE published
August 5, 2024 Record updated