CVE-2025-7330

Rockwell Automation 1783-NATR Cross-Site Request Forgery Vulnerability

CVSS 7 HIGHEPSS 0.2%CWE-352

A cross-site request forgery security issue exists in the product and version listed. The vulnerability stems from missing CSRF checks on the impacted form. This allows for unintended configuration modification if an attacker can convince a logged in admin to visit a crafted link.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Produtos afetados

Rockwell Automation · Comms - 1783-NATR

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1756.html