Rockwell Automation FactoryTalk AssetCentre — Intelligence Hub

Source

CISA_ICS

Published

1-30-2025

CVE IDs

CVE-2025-0477 CVE-2025-0497 CVE-2025-0498

Affected Products

FactoryTalk AssetCentre

Summary

Successful exploitation of these vulnerabilities could allow an attacker to extract passwords, access, credentials, or impersonate other users.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-030-05 https://www.cve.org/CVERecord?id=CVE-2025-0477 https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H https://www.cve.org/CVERecord?id=CVE-2025-0497 https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H https://www.cve.org/CVERecord?id=CVE-2025-0498 https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H