ICSA-25-317-05
·
Published 2025-11-13
·
View on CISA ICS-CERT ↗
Rockwell Automation Verve Asset Manager
CVSS 9.9
CRITICAL
Risk Summary
Successful exploitation of this vulnerability could result in an attacker accessing or altering user data.
CVEs (1)
Remediations
- Rockwell Automation has addressed this issue in version 1.41.4 and 1.42. Rockwell Automation encourages users to update to the newest available version.
- For more information about this issue, see the advisory on the Rockwell Automation security page.
- Users with additional questions can contact Rockwell Automation TechConnect for help.
Affected Vendors
Rockwell Automation
Affected Products (12)
Rockwell Automation
·
Verve Asset Manager
1.33
Rockwell Automation
·
Verve Asset Manager
1.34
Rockwell Automation
·
Verve Asset Manager
1.35
Rockwell Automation
·
Verve Asset Manager
1.36
Rockwell Automation
·
Verve Asset Manager
1.37
Rockwell Automation
·
Verve Asset Manager
1.38
Rockwell Automation
·
Verve Asset Manager
1.39
Rockwell Automation
·
Verve Asset Manager
1.40
Rockwell Automation
·
Verve Asset Manager
1.41
Rockwell Automation
·
Verve Asset Manager
1.41.1
Rockwell Automation
·
Verve Asset Manager
1.41.2
Rockwell Automation
·
Verve Asset Manager
1.41.3
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more