VYPR

FactoryTalk Activation Service

by Rockwellautomation

CVEs (4)

  • CVE-2019-25276HigFeb 5, 2026
    risk 0.51cvss 7.8epss 0.00

    Studio 5000 Logix Designer 30.01.00 contains an unquoted service path vulnerability in the FactoryTalk Activation Service that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files (x86)\Rockwell…

  • CVE-2017-6015HigMay 11, 2018
    risk 0.51cvss 7.8epss 0.01

    Without quotation marks, any whitespace in the file path for Rockwell Automation FactoryTalk Activation version 4.00.02 remains ambiguous, which may allow an attacker to link to or run a malicious executable. This may allow an authorized, but not privileged local user to execute…

  • CVE-2025-7970Sep 9, 2025
    risk 0.00cvss epss 0.00

    A security issue exists within FactoryTalk Activation Manager. An error in the implementation of cryptography within the software could allow attackers to decrypt traffic. This could result in data exposure, session hijacking, or full communication compromise.

  • CVE-2024-6326Jul 16, 2024
    risk 0.00cvss epss 0.00

    An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A malicious user could exploit this vulnerability by starting a back-up or restore process, which temporarily exposes private keys, passwords, pre-shared keys, and…