Rockwell Automation FactoryTalk Optix Remote Code Execution Vulnerability_CVE-2025-9161

7.3 / 10

HIGH

CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

A security issue exists within FactoryTalk Optix MQTT broker due to the lack of URI sanitization. This flaw enables the loading of remote Mosquito plugins, which can be used to achieve remote code execution.

Basic Information

ID CVE-2025-9161

Source Rockwell

Published Sep 9, 2025 at 12:57

Modified Sep 9, 2025 at 13:18

Affected Product

Vendor Rockwell Automation

Product FactoryTalk Optix

Version All Versions 1.5.0 - 1.5.7

Affected Versions Rockwell Automation FactoryTalk Optix All Versions 1.5.0 - 1.5.7

CWE Classification

CWE-77

References

www.rockwellautomation.com /en-us/trust-center/security-advisories/advisory.SD1742.html

{
    "lastseen": "",
    "description": "A security issue exists within FactoryTalk Optix MQTT broker due to the lack of URI sanitization. This flaw enables the loading of remote Mosquito plugins, which can be used to achieve remote code execution.",
    "published": "2025-09-09T12:57:40.934Z",
    "modified": "2025-09-09T13:18:44.719Z",
    "type": "cve",
    "title": "Rockwell Automation FactoryTalk Optix Remote Code Execution Vulnerability",
    "source": "Rockwell",
    "references": "https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1742.html",
    "id": "CVE-2025-9161",
    "bulletinFamily": "",
    "cwe": [
        "CWE-77"
    ],
    "cvelist": null,
    "sourceData": "Rockwell Automation FactoryTalk Optix All Versions 1.5.0 - 1.5.7",
    "sourceHref": "",
    "cvss": {
        "score": 7.3,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "FactoryTalk Optix",
    "version": "All Versions 1.5.0 - 1.5.7",
    "vendor": "Rockwell Automation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}