Rockwell Automation FactoryTalk

Back to Archive

Source

CISA_ICS

Published

1-28-2025

CVE IDs

CVE-2025-24479 CVE-2025-24480

Affected Products

FactoryTalk View ME

Summary

Successful exploitation of these vulnerabilities could allow an attacker to execute code on the device with elevated privileges.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-028-03https://www.cve.org/CVERecord?id=CVE-2025-24479https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:Hhttps://www.cve.org/CVERecord?id=CVE-2025-24480https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H