CVE-2025-24480

Published Jan 28, 2025

Last updated 9 days ago

CVSS critical 9.3
Scada

Overview

Description
A Remote Code Execution Vulnerability exists in the product and version listed above. The vulnerability is due to lack of input sanitation and could allow a remote attacker to run commands or code as a high privileged user.
Source
PSIRT@rockwellautomation.com
NVD status
Deferred

Risk scores

CVSS 4.0

Type
Secondary
Base score
9.3
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
CRITICAL

Weaknesses

PSIRT@rockwellautomation.com
CWE-78

Social media

Hype score
Not currently trending

  1. #Vulnerability #CVE202524479 CVE-2025-24480 (CVSS 9.8): Rockwell Automation Addresses Critical Flaw in FactoryTalk View ME https://t.co/Bdk1DiibVN

    @Komodosec

    10 Feb 2025

    11 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. CVE-2025-24480 impacts Rockwell Automation https://t.co/n65OXnHH37

    @WhalersLtd

    3 Feb 2025

    51 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-24480 (CVSS 9.8): Rockwell Automation Addresses Critical Flaw in FactoryTalk View ME https://t.co/mFaU4T4IfH

    @JosephLykowski

    2 Feb 2025

    87 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Rockwell Automation FactoryTalk View Machine Edition (ME)に重大(Critical)な脆弱性。CVE-2025-24480はCVSSスコア9.8で、入力無害化の欠如に起因し、攻撃者が遠隔から高権限ユーザでコマンドを実行することが可能なもの。ローカル権限昇格CVE-2025-24479と併せて修正。 https://t.co/ryz0w6Cnvv

    @__kokumoto

    2 Feb 2025

    527 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  5. CVE-2025-24480 impacts Rockwell Automation #RockwellAutomation #CVE-2025-24480 https://t.co/haOQZMstsW

    @pravin_karthik

    2 Feb 2025

    183 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. CVE-2025-24480 (CVSS 9.8): Rockwell Automation Addresses Critical Flaw in FactoryTalk View ME https://t.co/IU5rNZRe1b

    @Dinosn

    1 Feb 2025

    1916 Impressions

    0 Retweets

    3 Likes

    3 Bookmarks

    0 Replies

    0 Quotes

  7. 🗣 CVE-2025-24480 (CVSS 9.8): Rockwell Automation Addresses Critical Flaw in FactoryTalk View ME https://t.co/LEk2sC9E5p

    @fridaysecurity

    1 Feb 2025

    119 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. CVE-2025-24480 (CVSS 9.8): Rockwell Automation Addresses Critical Flaw in FactoryTalk View ME CVE-2025-24479 and CVE-2025-24480 could potentially allow attackers to execute malicious code and compromise affected systems https://t.co/9pLxtk4OTS

    @the_yellow_fall

    1 Feb 2025

    398 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  9. [CVE-2025-24480: CRITICAL] Beware of a Remote Code Execution Vulnerability due to input sanitation issues. Attackers could run commands as high privileged users. Stay cyber secure!#cybersecurity,#vulnerability https://t.co/UQzdX8TSRJ https://t.co/LVvSL0edDF

    @CveFindCom

    28 Jan 2025

    35 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. CVE-2025-24480 A Remote Code Execution Vulnerability exists in the product and version listed above. The vulnerability is due to lack of input sanitation and could allow a remote at… https://t.co/gavwH7zbJx

    @CVEnew

    28 Jan 2025

    200 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Related CVEs

  1. All versions of InSAT MasterSCADA BUK-TS are susceptible to OS command injection through a field in its MMadmServ web interface. Malicious users that use the vulnerable endpoint are potentially able to cause remote code execution.CVE-2026-22553
  2. InSAT MasterSCADA BUK-TS is susceptible to SQL Injection through its main web interface. Malicious users that use the vulnerable endpoint are potentially able to cause remote code execution.CVE-2026-21410
  3. FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. From 1.2.8 through 1.2.10, an authentication bypass vulnerability in FUXA allows an unauthenticated, remote attacker to execute arbitrary code on the server when the Node-RED plugin is enabled. This has been patched in FUXA version 1.2.11.CVE-2026-25938
  4. FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. From 1.2.8 through version 1.2.10, an authorization bypass vulnerability in the FUXA allows an unauthenticated, remote attacker to create and modify arbitrary schedulers, exposing connected ICS/SCADA environments to follow-on actions. This has been patched in FUXA version 1.2.11.CVE-2026-25939
  5. FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. An insecure default configuration in FUXA allows an unauthenticated, remote attacker to gain administrative access and execute arbitrary code on the server. This affects FUXA through version 1.2.9 when authentication is enabled, but the administrator JWT secret is not configured. This issue has been patched in FUXA version 1.2.10.CVE-2026-25894

References

Sources include official advisories and independent security research.