CVE Catalog

CVE-2025-13036

CriticalCVSS 9.2
Published: Updated: Translated: NVD NIST

Summary

An authentication bypass security issue exists within FactoryTalk Historian Site Edition. By continually sending requests to the login endpoint, an attacker may obtain a valid authentication token.

Risk Assessment

The organization may be exposed to unauthorized access to the system, potentially leading to data leakage or data manipulation.

Recommendation

It is recommended to implement rate limiting on login attempts and to monitor activity on login endpoints.

Original NVD description (English source)

An authentication bypass security issue exists within FactoryTalk Historian Site Edition. By continually sending requests to the login endpoint, an attacker may obtain a valid authentication token.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS