PT-2025-1322 · Rockwell Automation · Factorytalk View Se
Published
2025-01-28
·
Updated
2025-02-10
·
CVE-2025-24480
CVSS v4.0
10
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Rockwell Automation FactoryTalk View ME (affected versions not specified)
Description
A remote code execution issue exists due to lack of input sanitation, which could allow a remote attacker to run commands or code as a high privileged user.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Factorytalk View Se