CVE-2026-9128
HIGH
7.3
CVSS 4.0
Description
A code execution security issue exists within Studio 5000 Logix Designer® due to an unquoted search path in the External Tools configuration. The executable paths specified in the external tools configuration file are not properly quoted, and because these paths contain spaces, the operating system may resolve them to unintended executables placed earlier in the search order. If exploited, an attacker could plant a malicious executable in a location within the search path, resulting in arbitrary code execution with the same permissions of the user running the application.
Metadata
Severity & Metrics
7.3
HIGH CVSS 4.0
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
SSVC — CISA Coordinator
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| Rockwell Automation | Studio 5000 Logix Designer | — | V35.00, 34.00-34.02, 33.00-33.02, 32.00-32.04 and older |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-428 | cna | CWE-428: Unquoted Search Path or Element |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 7.3 | HIGH | 4.0 | cna | CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
References (1)