CVE-2024-7513 HIGH

CVE-2024-7513: Rockwell Automation FactoryTalk® View Site Edition Code Execution Vulnerability via File Permissions

Vendor Rockwell Automation
Product FactoryTalk View Site Edition
Weakness CWE-732
Published August 14, 2024
Last update August 15, 2025

CVSS base score

8.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

CVE-2024-7513 IMPACT A code execution vulnerability exists in the affected product. The vulnerability occurs due to improper default file permissions allowing any user to edit or replace files, which are executed by account with elevated permissions.

Key dates

02Disclosure timeline

August 14, 2024 CVE published
August 15, 2025 Record updated