PT-2025-36722 · Rockwell+1 · Rockwell Stratix+3
Published
2025-09-09
·
Updated
2025-09-09
·
CVE-2025-7350
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
Cisco Stratix 5410, 5700, and 8000 devices versions prior to IOS 15.2(8)E6
Rockwell Stratix devices versions prior to IOS 15.2(8)E6
Description:
A security issue affects Cisco and Rockwell Stratix devices, potentially leading to remote code execution (RCE) by uploading and running malicious configurations without authentication. The vulnerability impacts industrial Ethernet switches and could allow unauthenticated remote attackers to achieve RCE.
Recommendations:
Cisco Stratix 5410, 5700, and 8000 devices: Update to IOS 15.2(8)E6 or later.
Rockwell Stratix devices: Update to IOS 15.2(8)E6 or later.
Fix
RCE
Special Elements Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Stratix 5410
Cisco Stratix 5700
Cisco Stratix 8000
Rockwell Stratix