216.73.217.19

CVE-2025-0498

· Published 30/01/2025 18:15 · Modified 30/01/2025 18:15

Labels: CVE-2025-0498 2025-01-30CVE-2025-0498CWE-522[email protected]

Essential information

Published
30/01/2025 18:15
Modified
30/01/2025 18:15
Author
Creator
CISA KEV
No
CWE

Description

A data exposure vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation FactoryTalk® AssetCentre. The vulnerability exists due to insecure storage of FactoryTalk® Security user tokens, which could allow a threat actor to steal a token and, impersonate another user.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References