CVE-2025-9063

CVSS v4.0

7.0

Vector

AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Name of the Vulnerable Software and Affected Versions FactoryTalk View Machine Edition versions (affected versions not specified)

Description An authentication bypass issue exists in the FactoryTalk View Machine Edition Web Browser ActiveX control. Successful exploitation can lead to unauthorized access to the PanelView Plus 7 Series B, potentially allowing access to the file system and retrieval of diagnostic information and event logs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2025-9063

Affected Products

Factorytalk View Machine Edition

Panelview Plus 7 Series B

CVE-2025-9063

Weakness Enumeration

Related Identifiers

Affected Products

References · 4