CVE-2025-14377

Vulnerability Description

A security issue was discovered within the legacy Ansible playbook component of Verve Asset Manager, caused by plaintext secrets incorrectly stored when a playbook is running. This component has been retired and has been optional since the 1.36 release in 2024.

Related Weaknesses (CWE)

CWE-312

References

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/adviso

FAQ

What is CVE-2025-14377?

CVE-2025-14377 is a documented vulnerability. A security issue was discovered within the legacy Ansible playbook component of Verve Asset Manager, caused by plaintext secrets incorrectly stored when a playbook is running. This component has been ...

How severe is CVE-2025-14377?

CVSS scoring is not yet available for CVE-2025-14377. Check NVD for updates.

Is there a patch for CVE-2025-14377?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.