You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 11696
About this tag
CVE-2025-11696 is a high-severity vulnerability in Rockwell Automation's Studio 5000 Simulation Interface, disclosed alongside CVE-2025-11697. The flaw involves path traversal and local code execution, posing risks to ICS/OT environments. Rockwell has released a corrective update and mitigation guidance. Community analysts highlight the danger of leaving simulation services accessible from business networks, as they can be weaponized. This tag covers discussions on patching, mitigation, and the broader implications for industrial control system security.
Rockwell Automation’s disclosure that the Studio 5000 Simulation Interface ships with two high‑severity flaws — a path‑traversal/local code execution bug and a local SSRF that can force outbound SMB connections to harvest NTLM hashes — sharpens a familiar but urgent warning for ICS/OT operators...