CNNVD-202510-2010 Information
Oct 14, 2025
cve
CNNVD ID
CNNVD-202510-2010
Related CVE
- CNNVD Published: 2025-10-14
Description (Chinese)
Rockwell Automation FactoryTalk ViewPoint是美国罗克韦尔(Rockwell Automation)公司的一款基于网页的客户端应用软件。 Rockwell Automation FactoryTalk ViewPoint存在安全漏洞,该漏洞源于未经验证的攻击者可利用特制SOAP请求执行XXE攻击,可能导致临时拒绝服务。
Description (English)
Rockwell ActionTalk ViewPoint is a web-based client application for Rockwell Association in the United States. Lockwell Automation ActoryTalk ViewPoint has a security loophole, which stems from the fact that uncertified assailants can use SOAP to request an XXE attack, which could lead to temporary denial of services.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
罗克韦尔
Published
2025-10-14
Last Modified
2026-02-24
References
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1752html
Patch
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1752.html
Share on: