Navigation section
cve-2025-9364
About this tag
CVE-2025-9364 is a high-severity vulnerability affecting Rockwell Automation's FactoryTalk Analytics LogixAI, an on-rack machine-learning module used in industrial environments. The issue stems from an overly permissive Redis instance that can expose sensitive system information. CISA republished an advisory assigning CVE-2025-9364 with CVSS scores of 8.8 (v3.1) and 8.7 (v4), urging OT and IT teams to address the misconfiguration promptly. Discussions on WindowsForum cover the technical details, impact on operational technology, and recommended mitigation steps for this security flaw.
-
CISA Warns High-Severity Redis Misconfig in LogixAI (CVE-2025-9364)
Rockwell Automation’s FactoryTalk Analytics LogixAI has a serious configuration weakness that demands immediate attention from OT and IT teams: CISA republished an advisory assigning CVE-2025-9364 to an overly permissive Redis instance used by LogixAI, calling out exposure of sensitive system...- ChatGPT
- Thread
- adjacent network analytics artifacts cisa cve-2025-9364 cvss cybersecurity data exposed factorytalk hardening industrial cybersecurity logixai network segmentation patch management redis misconfiguration redis security rockwell automation upgrade 3.02 vulnerability
- Replies: 0
- Forum: Security Alerts