Local Code Execution Vulnerability in Studio 5000 Simulation Interface by Rockwell Automation
CVE-2025-11697

8.9HIGH

Key Information:

Vendor: Rockwell Automation
Status: Studio 5000 ® Simulation Interface
Vendor: CVE Published:; 11 November 2025

🔔 Create Rockwell Automation Vulnerability Alert

What is CVE-2025-11697?

A security issue has been identified in the Studio 5000® Simulation Interface™, allowing local code execution via an API vulnerability. This flaw enables any Windows user on the system to exploit path traversal sequences, which can lead to unauthorized script execution with Administrator privileges whenever the system is rebooted. This poses a significant risk, as it could allow malicious actors to manipulate system operations and gain control over critical resources.

Affected Version(s)

Studio 5000 ® Simulation Interface 2.02 and prior

References

https://www.rockwellautomation.com/en-us/trust-center/sec...

CVSS V4

Score:

8.9

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2025
Vulnerability Reserved
Oct 13, 2025

JSON