exploitDog

CVE-2025-9036

Опубликовано: 14 авг. 2025

Источник: nvd

EPSS Низкий

Описание

A security issue in the runtime event system allows unauthenticated connections to receive a reusable API token. This token is broadcasted over a WebSocket and can be intercepted by any local client listening on the connection.

Ссылки

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1740.html

EPSS

Процентиль: 5%

0.0002

Низкий

Дефекты

CWE-200

Связанные уязвимости

GHSA-hqjr-c587-3gpw

github

6 месяцев назад

A security issue in the runtime event system allows unauthenticated connections to receive a reusable API token. This token is broadcasted over a WebSocket and can be intercepted by any local client listening on the connection.

EPSS

Процентиль: 5%

0.0002

Низкий

Дефекты

CWE-200