← voltar
CVE-2025-41684

Weidmueller: Root Command Injection via Unsanitized Input in tls_iotgen_setting Endpoint

CVSS 8.8 HIGHEPSS 0.7%CWE-78
An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of improper sanitizing of user input in the Main Web Interface (endpoint tls_iotgen_setting).
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
Weidmueller · IE-SR-2TX-WLWeidmueller · IE-SR-2TX-WL-4G-EUWeidmueller · IE-SR-2TX-WL-4G-US-V

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://certvde.com/de/advisories/VDE-2025-052