CVE-2025-55068

Dover Fueling Solutions ProGauge MagLink LX4 Devices Integer Overflow or Wraparound

CVSS 8.8 HIGHEPSS 0.4%CWE-190

Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a certain point. An attacker can manually change the system time to exploit this limitation, potentially causing errors in authentication and leading to a denial-of-service condition.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N

Produtos afetados

Dover Fueling Solutions · ProGauge MagLink LX 4 Dover Fueling Solutions · ProGauge MagLink LX Plus Dover Fueling Solutions · ProGauge MagLink LX Ultimate

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-07 https://www.doverfuelingsolutions.com/mea/en/products-and-solutions/automatic-tank-gauging/consoles/progauge-maglink-lx-4-console.html