CVE-2025-9063 HIGH

CVE-2025-9063: Rockwell Automation PanelView Plus 7 Performance Series B Authentication Bypass

Vendor Rockwell Automation
Product PanelView Plus 7 Performance Series B
Weakness CWE-287 · Improper authentication
Published October 14, 2025
Last update October 14, 2025

CVSS base score

7.0/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

An authentication bypass security issue exists within FactoryTalk View Machine Edition Web Browser ActiveX control. Exploitation of this vulnerability allows unauthorized access to the PanelView Plus 7 Series B, including access to the file system, retrieval of diagnostic information, event logs, and more.

Key dates

02Disclosure timeline

October 14, 2025 CVE published
October 14, 2025 Record updated