What is CVE-2025-7973?

CVE-2025-7973 is a vulnerability in Rockwell Automation Factorytalk® Viewpoint, classified under Privilege Chaining. Published 2025-08-14.

Is CVE-2025-7973 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Rockwell Automation Factorytalk® Viewpoint

CVE-2025-7973

A security issue exists in FactoryTalk ViewPoint version 14.0 or below due to improper handling of MSI repair operations. During a repair, attackers can hijack the cscript.exe console window, which runs with SYSTEM privileges. This can be…

EPSS: 0.000 (8.2th percentile) — read the EPSS interpretation.

Affected products

Rockwell Automation Factorytalk® Viewpoint — versions Version 14.00 or below

Weakness classification (CWE)

CWE-268 — Privilege Chaining

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD17…

Frequently asked questions

What is CVE-2025-7973?: CVE-2025-7973 is a vulnerability in Rockwell Automation Factorytalk® Viewpoint, classified under Privilege Chaining. Published 2025-08-14.
Is CVE-2025-7973 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.