CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-7972

A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODE_ENV to ‘development’, the attacker can disable FTSP token validation. This bypass allows access to create, update, and delete FTLinx drivers.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.1%

CVSS Severity

CVSS v3 Score 9.1

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1735.html

Products affected by CVE-2025-7972

Rockwellautomation » Factorytalk Linx » Version: 6.00

cpe:2.3:a:rockwellautomation:factorytalk_linx:6.00
Rockwellautomation » Factorytalk Linx » Version: 6.10

cpe:2.3:a:rockwellautomation:factorytalk_linx:6.10
Rockwellautomation » Factorytalk Linx » Version: 6.11

cpe:2.3:a:rockwellautomation:factorytalk_linx:6.11
Rockwellautomation » Factorytalk Linx » Version: 6.20

cpe:2.3:a:rockwellautomation:factorytalk_linx:6.20
Rockwellautomation » Factorytalk Linx » Version: 6.21

cpe:2.3:a:rockwellautomation:factorytalk_linx:6.21
Rockwellautomation » Factorytalk Linx » Version: 6.30

cpe:2.3:a:rockwellautomation:factorytalk_linx:6.30
Rockwellautomation » Factorytalk Linx » Version: 6.31

cpe:2.3:a:rockwellautomation:factorytalk_linx:6.31
Rockwellautomation » Factorytalk Linx » Version: 6.40

cpe:2.3:a:rockwellautomation:factorytalk_linx:6.40

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-7972

Products

Pricing

Contact Us