Vulnerabilities

CVE-2025-11696

by Fred · 11/11/2025

A local server-side request forgery (SSRF) security issue exists within Studio 5000® Simulation Interface™ via the API. This vulnerability allows any Windows user on the system to trigger outbound SMB requests, enabling the capture of NTLM hashes.

More information : https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1760.html

Similar

Tags: Cybersecurity Alert