Rockwell Automation FactoryTalk ViewPoint

Back to Archive

Source

CISA_ICS

Published

10-16-2025

CVE IDs

CVE-2025-9066

Affected Products

PanelView Plus 7 Terminal

Summary

Successful exploitation of this vulnerability could allow unauthenticated attackers to achieve XML external entity injection, resulting in a temporary denial-of-service condition.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-289-03https://www.cve.org/CVERecord?id=CVE-2025-9066https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H