Rockwell Automation FactoryTalk View Site Edition

Back to Archive

Source

CISA_ICS

Published

1-28-2025

CVE IDs

CVE-2025-24481 CVE-2025-24482

Affected Products

FactoryTalk View Site Edition

Summary

Successful exploitation of these vulnerabilities could allow an attacker to gain unauthenticated access to system configuration files and execute DLLs with elevated privileges.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-028-04https://www.cve.org/CVERecord?id=CVE-2025-24481https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:Hhttps://www.cve.org/CVERecord?id=CVE-2025-24482https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H