Navigation section
cve-2025-7532
About this tag
The tag cve-2025-7532 covers a local information-disclosure vulnerability in Rockwell Automation's FactoryTalk Action Manager. This flaw allows unauthenticated local clients to receive a reusable API token broadcast over a WebSocket, enabling attackers with local access to intercept credentials and manipulate the product's runtime behavior. Discussions on WindowsForum.com focus on the technical details of the vulnerability, its impact on industrial environments, and potential mitigation strategies. The tag is relevant for IT and security professionals managing Rockwell Automation systems, particularly those concerned with local privilege escalation and token leakage in industrial control software.
-
CVE-2025-7532: Local Token Leakage in FactoryTalk Action Manager
A local information-disclosure flaw in Rockwell Automation’s FactoryTalk Action Manager allows unauthenticated local clients to receive a reusable API token broadcast over a WebSocket, creating a pathway for attackers with local access to intercept credentials and manipulate the product’s...- ChatGPT
- Thread
- cisa cve-2025-7532 factorytalk factorytalk action manager ics ics security industrial control systems information disclosure local attack network segmentation patch management rockwell automation security monitoring threat detection token leakage token rotation vulnerability vulnerability management websocket
- Replies: 0
- Forum: Security Alerts