Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-7328

Multiple Broken Authentication security issues exist in the affected product. The security issues are due to missing authentication checks on critical functions. These could result in potential denial-of-service, admin account takeover, or NAT rule modifications. Devices would no longer be able to communicate through NATR as a result of denial-of-service or NAT rule modifications. NAT rule modification could also result in device communication to incorrect endpoints. Admin account takeover could allow modification of configuration and require physical access to restore.

Published

2025-10-14T13:15:38.987

Last Modified

2025-10-29T15:40:38.553

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-306

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	rockwellautomation	1783-natr_firmware	< 1.007	Yes
Hardware	rockwellautomation	1783-natr	-	No

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1756.html Vendor Advisory ([email protected])