CVE-2025-9036 Information
Aug 15, 2025
cve
Description
A security issue in the runtime event system allows unauthenticated connections to receive a reusable API token. This token is broadcasted over a WebSocket and can be intercepted by any local client listening on the connection.
Reference
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1740.html
Related CNNVD
CNNVD-202508-1649 (Published: 2025-08-14)
Share on: