A security issue in the runtime event system allows unauthenticated connections to receive a reusable API token. This token is broadcasted over a WebSocket and can be intercepted by any local client listening on the connection.
Fixes

Solution

1.01 and later


Workaround

No workaround given by the vendor.

History

Sat, 16 Aug 2025 21:45:00 +0000

Type Values Removed Values Added
First Time appeared Rockwellautomation
Rockwellautomation factorytalk Action Manager
Vendors & Products Rockwellautomation
Rockwellautomation factorytalk Action Manager

Thu, 14 Aug 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 14 Aug 2025 13:45:00 +0000

Type Values Removed Values Added
Description A security issue in the runtime event system allows unauthenticated connections to receive a reusable API token. This token is broadcasted over a WebSocket and can be intercepted by any local client listening on the connection.
Title Rockwell Automation FactoryTalk® Action Manager v1.0.0 Runtime Vulnerability
Weaknesses CWE-200
References
Metrics cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Rockwell

Published:

Updated: 2025-08-14T15:05:37.546Z

Reserved: 2025-08-14T13:16:06.366Z

Link: CVE-2025-9036

cve-icon Vulnrichment

Updated: 2025-08-14T14:02:02.029Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-08-14T14:15:36.723

Modified: 2025-08-15T13:12:51.217

Link: CVE-2025-9036

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-08-16T21:41:12Z