Rockwell Automation Verve Asset Manager

Back to Archive

Source

CISA_ICS

Published

3-25-2025

CVE IDs

CVE-2025-1449

Affected Products

Verve Asset Manager

Summary

Successful exploitation of this vulnerability could allow an attacker with administrative access to run arbitrary commands in the context of the container running the service.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-084-02https://www.cve.org/CVERecord?id=CVE-2025-1449https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H