Home/Product/rockwellautomation factorytalk view
Product

rockwellautomation factorytalk view

18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-9064
<= 15.0
A path traversal security issue exists within FactoryTalk View Machine Edition, allowing unauthenticated attackers on the same net
9.1CRITICAL
 CVE-2025-9063
<= 15.0
An authentication bypass security issue exists within FactoryTalk View Machine Edition Web Browser ActiveX control. Exploitation
9.8CRITICAL
 CVE-2024-37365
all versions
A remote code execution vulnerability exists in the affected product. The vulnerability allows users to save projects within the p
7.3HIGH
 CVE-2024-45824
>= 12.0 and <= 14.0
CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products. The vulnerability occurs when chained with P
9.8CRITICAL
 CVE-2024-7513
>= 13.0
CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. The vulnerability occurs due to improper defa
8.8HIGH
 CVE-2024-37369
>= 12.0 and < 14.0
A privilege escalation vulnerability exists in the affected product. The vulnerability allows low-privilege users to edit scripts,
8.8HIGH
 CVE-2024-37368
>= 11.0 and < 14.0
A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE. The vulnerability allows a user from
7.5HIGH
 CVE-2024-37367
>= 12.0 and < 14.0
A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE v12. The vulnerability allows a user f
7.5HIGH
 CVE-2024-4609
< 11.0
A vulnerability exists in the Rockwell Automation FactoryTalk® View SE Datalog function that could allow a threat actor to inject
9.8CRITICAL
 CVE-2024-21914
< 14.0
A vulnerability exists in the affected product that allows a malicious user to restart the Rockwell Automation PanelView™ Plus 7
5.3MEDIUM
 CVE-2023-46289
>= 11.0 and <= 13.0
Rockwell Automation FactoryTalk View Site Edition insufficiently validates user input, which could potentially allow threat actors
7.5HIGH
 CVE-2023-2071
<= 13.0
Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unaut
9.8CRITICAL
 CVE-2020-14481
<= 9.0
The DeskLock tool provided with FactoryTalk View SE uses a weak encryption algorithm that may allow a local, authenticated attacke
7.8HIGH
 CVE-2020-14480
<= 9.0
Due to usernames/passwords being stored in plaintext in Random Access Memory (RAM), a local, authenticated attacker could gain acc
5.5MEDIUM
 CVE-2020-12031
all versions
In all versions of FactoryTalk View SE, after bypassing memory corruption mechanisms found in the operating system, a local, authe
7.5HIGH
 CVE-2020-12028
all versions
In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize certain handlers to interact with
7.3HIGH
 CVE-2020-12027
all versions
All versions of FactoryTalk View SE disclose the hostnames and file paths for certain files within the system. A remote, authentic
4.3MEDIUM
 CVE-2020-12029
all versions
All versions of FactoryTalk View SE do not properly validate input of filenames within a project directory. A remote, unauthentica
9.0CRITICAL
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh