216.73.216.86

CVE-2025-7330

· Published 14/10/2025 13:15 · Modified 14/10/2025 19:36

Labels: CVE-2025-7330 2025-10-14CVE-2025-7330CWE-352[email protected]

Essential information

Published
14/10/2025 13:15
Modified
14/10/2025 19:36
Author
Creator
CVSS
7.0 HIGH (v3) 7.0 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A cross-site request forgery security issue exists in the product and version listed. The vulnerability stems from missing CSRF checks on the impacted form. This allows for unintended configuration modification if an attacker can convince a logged in admin to visit a crafted link.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
rockwell automation / * cpe:2.3:a:rockwell_automation:*:*:*:*:*:*:*:*:*

References