目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

Rockwell Automation 厂商漏洞列表 / CVE 中文分析 259

Rockwell Automation 厂商相关 259 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

罗克韦尔自动化专注于工业自动化与信息技术解决方案,其工业控制系统广泛应用于制造业。历史漏洞多涉及远程代码执行、身份验证绕过及跨站脚本,常因默认配置不当或补丁滞后引发风险。2021年爆发的“工业供应链攻击”事件凸显其生态脆弱性,攻击者利用软件更新机制植入恶意代码。建议用户严格实施网络隔离、及时更新固件,并启用多因素认证以缓解潜在威胁。

上位製品 Rockwell Automation: Arena® Arena Simulation ArmorStart ST ArmorStart® LT FactoryTalk AssetCentre 1756-ENBT, 1756-EWEB, 1768-ENBT, 1768-EWEB communication modules ThinManager ThinServer FactoryTalk View SE ThinManager® ThinServer™ ISaGRAF Runtime RSLinx Classic Pavilion8® ControlLogix® 5580 FactoryTalk® View SE Verve Asset Manager Arena® Simulation RSLinx Enterprise Software FactoryTalk Updater FactoryTalk View Machine Edition ThinManager PM1k 1408-BC3A-485 FactoryTalk® AssetCentre FactoryTalk System Services Comms - 1783-NATR FactoryTalk® DataMosaix™ Private Cloud ISaGRAF Workbench Connected Components Workbench CompactLogix 5380 controllers Micro820®, Micro850®, Micro870® FactoryTalk® Service Platform
CVE IDタイトルCVSS深刻度公開日
CVE-2025-9283 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 7.5AIHighAI2026-01-20
CVE-2025-9282 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 7.5AIHighAI2026-01-20
CVE-2025-9281 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 7.5AIHighAI2026-01-20
CVE-2025-9280 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 7.5AIHighAI2026-01-20
CVE-2025-14027 Rockwell Automation Recommends Upgrading From 1756-RM2 XT To 1756-RM3 XT — ControlLogix® Redundancy Enhanced ModuleCWE-401 7.5AIHighAI2026-01-20
CVE-2025-9279 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 7.5AIHighAI2026-01-20
CVE-2025-9278 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 6.5AIMediumAI2026-01-20
CVE-2025-9466 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 7.5AIHighAI2026-01-20
CVE-2025-11743 Rockwell Automation CompactLogix® 5370 Denial of Service Vulnerability — CompactLogix® 5370CWE-1284 7.5AIHighAI2026-01-20
CVE-2025-9465 ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 7.5AIHighAI2026-01-20
CVE-2025-9464 Rockwell Automation ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities — ArmorStart® LTCWE-400 7.5AIHighAI2026-01-20
CVE-2025-14377 Verve Asset Manager – Plaintext Storage Vulnerabilities — Verve Asset ManagerCWE-312 5.5AIMediumAI2026-01-20
CVE-2025-14376 Verve Asset Manager – Plaintext Storage Vulnerabilities — Verve Asset ManagerCWE-922 6.5AIMediumAI2026-01-20
CVE-2025-13824 Micro820®, Micro850®, Micro870® – Specialized Fuzzing Vulnerabilities — Micro820®, Micro850®, Micro870®CWE-763 7.5AIHighAI2025-12-15
CVE-2025-13823 Micro820®, Micro850®, Micro870® – Specialized Fuzzing Vulnerabilities — Micro820®, Micro850®, Micro870®CWE-1395 7.5AIHighAI2025-12-15
CVE-2025-9368 432ES-IG3 Series A Denial-of-Service Vulnerability — 432ES-IG3 Series ACWE-770 7.5AIHighAI2025-12-09
CVE-2025-12807 FactoryTalk® DataMosaix™ Private Cloud SQL Injection — FactoryTalk® DataMosaix™ Private CloudCWE-89 8.8AIHighAI2025-12-09
CVE-2025-11918 Rockwell Automation Arena® Simulation Stack-Based Buffer Overflow Vulnerability — Arena® SimulationCWE-121 7.3 -2025-11-14
CVE-2025-11697 Studio 5000 ® Simulation Interface Local Code Execution — Studio 5000 ® Simulation InterfaceCWE-200 7.8 -2025-11-11
CVE-2025-11696 Studio 5000 ® Simulation Interface SSRF — Studio 5000® Simulation Interface™CWE-22 6.5 -2025-11-11
CVE-2025-11862 Verve Asset Manager Access Control Vulnerability — Verve Asset ManagerCWE-863 8.8 -2025-11-11
CVE-2025-11085 FactoryTalk® DataMosaix™ Private Cloud – Persistent XSS — FactoryTalk® DataMosaix™ Private CloudCWE-116 6.1 -2025-11-11
CVE-2025-11084 FactoryTalk® DataMosaix™ Private Cloud – Authentication Bypass — FactoryTalk® DataMosaix™ Private CloudCWE-1390 7.4 -2025-11-11
CVE-2025-9178 Rockwell Automation 1715 EtherNet/IP Comms Module Denial-Of-Service Vulnerability — 1715-AENTR EtherNet/IP AdapterCWE-787 7.5AIHighAI2025-10-14
CVE-2025-9177 Rockwell Automation 1715 EtherNet/IP Comms Module Denial-Of-Service Vulnerability — 1715-AENTR EtherNet/IP AdapterCWE-770 7.5AIHighAI2025-10-14
CVE-2025-7330 Rockwell Automation 1783-NATR Cross-Site Request Forgery Vulnerability — Comms - 1783-NATRCWE-352 7.1AIHighAI2025-10-14
CVE-2025-7329 Rockwell Automation Comms - 1783-NATR Stored Cross-Site Scripting Vulnerability — Comms - 1783-NATRCWE-79 5.4AIMediumAI2025-10-14
CVE-2025-7328 Rockwell Automation Comms - 1783-NATR Multiple Broken Authentication Vulnerabilities — Comms - 1783-NATRCWE-306 6.8AIMediumAI2025-10-14
CVE-2025-9067 Rockwell Automation FactoryTalk® Linx Privilege Escalation Vulnerabilities — FactoryTalk LinxCWE-269 7.8AIHighAI2025-10-14
CVE-2025-9124 Rockwell Automation Compact GuardLogix® 5370 Denial-Of-Service Vulnerability — Compact GuardLogix® 5370CWE-248 7.5AIHighAI2025-10-14

本页汇总了 Rockwell Automation 厂商截至目前公开的全部 259 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。