CVE-2025-41719
Sauter: Improper Validation of user-controlled data
A low privileged remote attacker can corrupt the webserver users storage on the device by setting a sequence of unsupported characters which leads to deletion of all previously configured users and the creation of the default Administrator with a known default password.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Sauter · EY-modulo 5 ecos 5 ecos504/505Sauter · EY-modulo 5 modu 5 modu524Sauter · EY-modulo 5 modu 5 modu525Sauter · modulo 6 devices modu612-LCSauter · modulo 6 devices modu660-ASSauter · modulo 6 devices modu680-ASWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →