Primary

Context

Rockwell Automation Studio 5000 Simulation Interface Local Code Execution Vulnerability

Vulnerability

A local code execution vulnerability has been identified in Rockwell Automation's Studio 5000 Simulation Interface, affecting versions through 2.02. The issue arises within the API, where any Windows user can exploit path traversal sequences to extract files. This exploitation leads to the execution of scripts with Administrator privileges upon the next system reboot.

Impact

Exploitation of this vulnerability allows for local code execution with Administrator rights, executed on system reboot.

Remediation

Users can upgrade to Studio 5000 Simulation Interface version 3.0.0 to address this vulnerability. For those unable to upgrade, Rockwell Automation recommends following their security best practices.

Added: Nov 11, 2025, 2:23 PM

Updated: Nov 11, 2025, 2:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.9

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.9

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Rockwell Automation Studio 5000 Simulation Interface Local Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating