CVE-2025-9041 Information

Description

A security issue exists due to improper handling of CIP Class 32’s request when a module is inhibited on the 5094-IF8 device. It causes the module to enter a fault state with the Module LED flashing red. Upon un-inhibiting the module returns a connection fault (Code 160010) and the module cannot recover without a power cycle.

Reference

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1737.html

Related CNNVD

CNNVD-202508-1666 (Published: 2025-08-14)