Primary

Context

Rockwell Automation Stratix IOS Cross-Site Request Forgery to Remote Code Execution Vulnerability

Vulnerability

Patched

A cross-site request forgery vulnerability has been identified in Rockwell Automation Stratix IOS devices, specifically in the Stratix 5410, 5700, and 8000 series. This vulnerability allows for remote code execution by uploading and executing malicious configurations without authentication. The issue arises from improper handling of cross-site request forgery, enabling unauthorized actions to be performed on behalf of a user.

Impact

Exploitation of this vulnerability could lead to unauthorized remote code execution on the affected Stratix IOS devices.

Remediation

Users can upgrade to Stratix IOS version 15.2(8)E6 to address this vulnerability. For those unable to upgrade, Rockwell Automation recommends following their security best practices.

Added: Sep 9, 2025, 1:22 PM

Updated: Sep 9, 2025, 4:54 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

7.0

remediation

7.9

relevance

0.5

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

7.0

remediation

7.9

relevance

0.5

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Rockwell Automation Stratix IOS Cross-Site Request Forgery to Remote Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Rockwell Automation Stratix 5410

Rockwell Automation Stratix 5700

Rockwell Automation Stratix 8000

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating