Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

5032-CFGB16M12M12LDR

Source -

CNA

CNA CVEs -

2

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
2Vulnerabilities found
CVE-2025-7773
Assigner-Rockwell Automation
ShareView Details
Assigner-Rockwell Automation
CVSS Score-8.8||HIGH
EPSS-0.05% / 16.55%
||
7 Day CHG+0.01%
Published-14 Aug, 2025 | 13:52
Updated-15 Aug, 2025 | 13:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ArmorBlock 5000 I/O – Web Server Vulnerabilities

A security issue exists within the 5032 16pt Digital Configurable module’s web server. The web server’s session number increments at an interval that correlates to the last two consecutive sign in session interval, making it predictable.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-5032-CFGB16M12P5DR5032-CFGB16M12DR5032-CFGB16M12M12LDR
CWE ID-CWE-863
Incorrect Authorization
CVE-2025-7774
Assigner-Rockwell Automation
ShareView Details
Assigner-Rockwell Automation
CVSS Score-8.8||HIGH
EPSS-0.05% / 16.55%
||
7 Day CHG+0.01%
Published-14 Aug, 2025 | 13:39
Updated-15 Aug, 2025 | 13:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Rockwell Automation ArmorBlock 5000 I/O – Web Server Vulnerabilities

A security issue exists within the 5032 16pt Digital Configurable module’s web server. Intercepted session credentials can be used within a 3-minute timeout window, allowing unauthorized users to perform privileged actions.

Action-Not Available
Vendor-Rockwell Automation, Inc.
Product-5032-CFGB16M12P5DR5032-CFGB16M12DR5032-CFGB16M12M12LDR
CWE ID-CWE-306
Missing Authentication for Critical Function