Security Advisory

CVE-2025-0498

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-30 17:36:12

Last updated 2025-02-12 19:51:11

Assigner Rockwell

State PUBLISHED

Description

A data exposure vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation FactoryTalk® AssetCentre. The vulnerability exists due to insecure storage of FactoryTalk® Security user tokens, which could allow a threat actor to steal a token and, impersonate another user.

← Browse all CVEs View on cve.org ↗