Skip to main content

Factorytalk Datamosaix Private Cloud

1 CVEs product

Monthly

CVE-2026-9292 HIGH This Week

Stored cross-site scripting in Rockwell Automation FactoryTalk DataMosaix Private Cloud lets a high-privileged authenticated user persist malicious JavaScript through the Workflows configuration, which then executes in the browsers of other users who view the affected page. Successful exploitation can lead to session/account takeover, credential theft, or redirection to attacker-controlled sites. No public exploit identified at time of analysis, and the CVSS 4.0 base score is 8.4 (High).

XSS Factorytalk Datamosaix Private Cloud
NVD
CVSS 4.0
8.4
EPSS
0.3%
EPSS 0% CVSS 8.4
HIGH This Week

Stored cross-site scripting in Rockwell Automation FactoryTalk DataMosaix Private Cloud lets a high-privileged authenticated user persist malicious JavaScript through the Workflows configuration, which then executes in the browsers of other users who view the affected page. Successful exploitation can lead to session/account takeover, credential theft, or redirection to attacker-controlled sites. No public exploit identified at time of analysis, and the CVSS 4.0 base score is 8.4 (High).

XSS Factorytalk Datamosaix Private Cloud
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy