VYPR

affected products

by Rockwellautomation

CVEs (4)

  • CVE-2024-8533HigSep 12, 2024
    risk 0.57cvss 8.8epss 0.01

    A privilege escalation vulnerability exists in the Rockwell Automation affected products. The vulnerability occurs due to improper default file permissions allowing users to exfiltrate credentials and escalate privileges.

  • CVE-2024-6435HigJul 16, 2024
    risk 0.57cvss 8.8epss 0.00

    A privilege escalation vulnerability exists in the affected products which could allow a malicious user with basic privileges to access functions which should only be available to users with administrative level privileges. If exploited, an attacker could read sensitive data,…

  • CVE-2025-9177HigOct 14, 2025
    risk 0.50cvss epss 0.00

    A denial-of-service security issue exists in the affected product and version. The security issue stems from a high number of requests sent to the web server. This could result in a web server crash however; this does not impact I/O control or communication . A power cycle is…

  • CVE-2024-6068HigNov 14, 2024
    risk 0.47cvss 7.3epss 0.00

    A memory corruption vulnerability exists in the affected products when parsing DFT files. Local threat actors can exploit this issue to disclose information and to execute arbitrary code. To exploit this vulnerability a legitimate user must open a malicious DFT file.