exploitDog

CVE-2025-7972

Опубликовано: 14 авг. 2025

Источник: nvd

EPSS Низкий

Описание

A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODE_ENV to ‘development’, the attacker can disable FTSP token validation. This bypass allows access to create, update, and delete FTLinx drivers.

Ссылки

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1735.html

EPSS

Процентиль: 3%

0.00018

Низкий

Дефекты

CWE-286

Связанные уязвимости

GHSA-mhj6-rxgc-8472

github

около 1 месяца назад

A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODE_ENV to ‘development’, the attacker can disable FTSP token validation. This bypass allows access to create, update, and delete FTLinx drivers.

EPSS

Процентиль: 3%

0.00018

Низкий

Дефекты

CWE-286