exploitDog

CVE-2025-9063

Опубликовано: 14 окт. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

An authentication bypass security issue exists within FactoryTalk View Machine Edition Web Browser ActiveX control. Exploitation of this vulnerability allows unauthorized access to the PanelView Plus 7 Series B, including access to the file system, retrieval of diagnostic information, event logs, and more.

Ссылки

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1753.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rockwellautomation:factorytalk_view:*:*:*:*:machine:*:*:*

Версия до 15.0 (включая)

EPSS

Процентиль: 5%

0.00023

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-287

NVD-CWE-noinfo

Связанные уязвимости

GHSA-6444-jp6x-75rm

CVSS3: 9.8

github

4 месяца назад

An authentication bypass security issue exists within FactoryTalk View Machine Edition Web Browser ActiveX control. Exploitation of this vulnerability allows unauthorized access to the PanelView Plus 7 Series B, including access to the file system, retrieval of diagnostic information, event logs, and more.

EPSS

Процентиль: 5%

0.00023

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-287

NVD-CWE-noinfo