← voltar
CVE-2025-41647

Lenze: Plaintext Password Disclosure in PLC Designer V4 Interface

CVSS 5.5 MEDIUMEPSS 0.1%CWE-312
A local, low-privileged attacker can learn the password of the connected controller in PLC Designer V4 due to an incorrect implementation that results in the password being displayed in plain text under special conditions.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Produtos afetados
Lenze · PLC Designer V4

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://certvde.com/en/advisories/VDE-2025-043/