ICSA-26-197-09
·
Published 2026-07-16
·
View on CISA ICS-CERT ↗
Rockwell Automation FactoryTalk DataMosaix
CVSS 6.1
MEDIUM
Risk Summary
Successful exploitation of this vulnerability could allow an authenticated attacker to inject malicious scripts on the server.
CVEs (1)
Remediations
- Rockwell Automation recommends users to upgrade to the following: DataMosaix Private Cloud versions 8.03 or later.
- Customers using the affected software, who are not able to upgrade to one of the corrected versions, should use Rockwell Automation's security best practices (https://support.rockwellautomation.com/app/answers/answer_view/a_id/1085012/loc/en_US#__highlight).
- For more information, see Rockwell Automation Security Advisory SD1787 (https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1787.html).
Affected Vendors
Rockwell Automation
Affected Products (1)
Rockwell Automation
·
DataMosaix Private Cloud
<=8.02
Affected Sectors
Critical Manufacturing, Information Technology
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more