PatchSiren cyber security CVE debrief
CVE-2025-13036 Rockwell Automation CVE debrief
CVE-2025-13036 is a critical authentication bypass vulnerability in FactoryTalk Historian Site Edition. An attacker can exploit this vulnerability by continually sending requests to the login endpoint, potentially obtaining a valid authentication token. The vulnerability has a CVSS score of 9.2 and is considered critical.
- Vendor
- Rockwell Automation
- Product
- FactoryTalk Historian SE
- CVSS
- CRITICAL 9.2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-16
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-16
Who should care
Administrators and users of FactoryTalk Historian Site Edition should be aware of this vulnerability and take necessary actions to mitigate it.
Technical summary
The vulnerability exists within FactoryTalk Historian Site Edition and allows an attacker to bypass authentication by continually sending requests to the login endpoint, potentially obtaining a valid authentication token.
Defensive priority
High
Recommended defensive actions
- Apply patches or updates provided by the vendor as soon as possible.
- Restrict access to the login endpoint to trusted IP addresses or networks.
- Monitor login attempts and authentication token usage for suspicious activity.
Evidence notes
The CVE record and NVD detail pages provide additional information about the vulnerability.
Official resources
-
CVE-2025-13036 CVE record
CVE.org
-
CVE-2025-13036 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2025-13036 was published on 2026-06-16T15:16:32.870Z and modified on 2026-06-16T15:26:04.250Z.