Rockwellautomation Factorytalk Linx — known CVE vulnerabilities
Every CVE whose affected-product data names Rockwellautomation Factorytalk Linx, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2020-12001 — CVSS 9.8 (critical): FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior…
CVE-2020-27251 — CVSS 9.8 (critical): A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. This vulnerability could allow a remote…
CVE-2025-7972 — CVSS 9.1 (critical): A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODE_ENV to ‘development’, the…
CVE-2023-29464 — CVSS 8.2 (high): FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted…
CVE-2020-11999 — CVSS 8.1 (high): FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior…
CVE-2025-9068 — CVSS 7.8 (high): A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File (MSI) repair functionality, installed…
CVE-2025-9067 — CVSS 7.8 (high): A security issue exists within the x86 Microsoft Installer File (MSI), installed with FTLinx. Authenticated attackers with valid Windows…
CVE-2020-27253 — CVSS 7.5 (high): A flaw exists in the Ingress/Egress checks routine of FactoryTalk Linx Version 6.11 and prior. This vulnerability could allow a remote…
CVE-2020-5802 — CVSS 7.5 (high): An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr.dll by sending a specially crafted…
CVE-2020-27255 — CVSS 7.5 (high): A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. This vulnerability could allow a remote…
CVE-2020-5801 — CVSS 7.5 (high): An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that triggers an unhandled exception in…
CVE-2020-12005 — CVSS 7.5 (high): FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior…
CVE-2020-12003 — CVSS 7.5 (high): FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior…
CVE-2020-5806 — CVSS 5.5 (medium): An attacker-controlled memory allocation size can be passed to the C++ new operator in the CServerManager::HandleBrowseLoadIconStreamRequest…