CVE-2025-0497 | Rockwell Automation FactoryTalk AssetCentre prior 15.00.001 EventLogAttachmentExtractor insufficiently protected credentials

Inserito da Angelo Barbosa | Gen 30, 2025 | CVE

A vulnerability was found in Rockwell Automation FactoryTalk AssetCentre. It has been rated as problematic. Affected by this issue is some unknown functionality of the component EventLogAttachmentExtractor/ArchiveExtractor/LogCleanUp/ArchiveLogCleanUp. The manipulation leads to insufficiently protected credentials.

This vulnerability is handled as CVE-2025-0497. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-0497 | Rockwell Automation FactoryTalk AssetCentre prior 15.00.001 EventLogAttachmentExtractor insufficiently protected credentials

Post correlati

CVE-2024-10610 | ESAFENET CDG 5 ProtocolService.java delProtocol id sql injection

CVE-2024-11246 | code-projects Farmacia 1.0 /adicionar-cliente.php nome/cpf/dataNascimento cross site scripting

CVE-2024-31668 | rizin up to 0.6.2 librz/analysis/meta meta_set neutralization

CVE-2023-49786 | Asterisk prior 18.20.1/20.5.1/21.0.1 DTLS unknown vulnerability (GHSA-hxj9-xwr8-w8pq)