Weak Encryption Vulnerability in Rockwell Automation FactoryTalk® AssetCentre

CVE-2025-0477

What is CVE-2025-0477?

CVE-2025-0477 is a vulnerability identified in Rockwell Automation's FactoryTalk® AssetCentre, a software solution designed for managing and securing industrial automation assets. This vulnerability arises from the use of weak encryption methodologies in all versions prior to V15.00.001. If exploited, threat actors could potentially extract user passwords from the application, leading to unauthorized access and control over sensitive operational data and processes.

Technical Details

The flaw in CVE-2025-0477 stems from insufficient encryption standards implemented in the software. Specifically, the vulnerability allows for the compromise of stored password data, putting user credentials at risk. It affects all versions of FactoryTalk® AssetCentre prior to the latest release, increasing the urgency for users to upgrade to protect their systems effectively.

Potential Impact of CVE-2025-0477

1. Unauthorized Access: The extraction of passwords could enable attackers to gain unauthorized access to the FactoryTalk® AssetCentre system, potentially allowing them to manipulate or disrupt critical industrial operations.

2. Data Breach Risks: With access to user credentials, threat actors could exfiltrate sensitive operational data, resulting in significant financial losses and reputational damage for affected organizations.

3. Operational Disruption: Exploiting this vulnerability might lead to interruptions in essential services or processes, undermining the reliability and safety of industrial operations and impacting production timelines.

References