CVE-2025-9161
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-09

Last updated on: 2025-10-20

Assigner: Rockwell Automation

Description
A security issue exists within FactoryTalk Optix MQTT broker due to the lack of URI sanitization. This flaw enables the loading of remote Mosquito plugins, which can be used to achieve remote code execution.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-09
Last Modified
2025-10-20
Generated
2026-06-16
AI Q&A
2025-09-09
EPSS Evaluated
2026-06-14
NVD
CVE-2025-9161
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
rockwellautomation factorytalk_optix From 1.5.0 (inc) to 1.6.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-77 The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the FactoryTalk Optix MQTT broker due to improper URI sanitization, which allows attackers to load remote Mosquitto plugins. This can lead to remote code execution on affected systems, meaning an attacker could run malicious code remotely. [1]

Impact Analysis

The vulnerability can allow attackers to execute code remotely on systems running affected versions of FactoryTalk Optix (1.5.0 through 1.5.7). This could lead to unauthorized control, data compromise, or disruption of operations in environments using this software. [1]

Mitigation Strategies

The immediate step to mitigate this vulnerability is to upgrade FactoryTalk Optix to version 1.6.0 or later, where the issue is corrected. If upgrading is not possible, follow Rockwell Automation’s security best practices as no workarounds are available. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-9161. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart