Description

A path traversal vulnerability exists in the Rockwell Automation DataEdge Platform DataMosaix Private Cloud. By specifying the character sequence in the body of the vulnerable endpoint, it is possible to overwrite files outside of the intended directory. A threat actor with admin privileges could leverage this vulnerability to overwrite reports including user projects.

INFO

Published Date :

2025-01-28T15:16:38.188Z

Last Modified :

2025-01-28T16:21:57.505Z

Source :

Rockwell
AFFECTED PRODUCTS

The following products are affected by CVE-2025-0659 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-0659.

URL Resource
https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1715.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability