{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-61934", "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "state": "PUBLISHED", "assignerShortName": "icscert", "dateReserved": "2025-10-21T21:55:11.850Z", "datePublished": "2025-10-23T22:01:28.290Z", "dateUpdated": "2025-10-24T14:31:43.765Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Productivity Suite", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "SW V4.2.1.9", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Productivity 3000 P3-622 CPU", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "SW V4.2.1.9", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Productivity 3000 P3-550E CPU", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "SW V4.2.1.9", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Productivity 3000 P3-530 CPU", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "SW v4.4.1.19", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Productivity 2000 P2-622 CPU", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "SW v4.4.1.19", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Productivity 2000 P2-550 CPU", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "SW v4.4.1.19", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Productivity 1000 P1-550 CPU", "vendor": "AutomationDirect", "versions": [{"lessThanOrEqual": "SW v4.4.1.19", "status": "affected", "version": "0", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "product": "Productivity 1000 P1-540 CPU", "vendor": "AutomationDirect", "versions": [{"lessThan": "SW v4.4.1.19", "status": "affected", "version": "0", "versionType": "custom"}]}], "cpeApplicability": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_suite:*:*:*:*:*:*:*:*", "versionEndIncluding": "sw_v4.2.1.9", "versionStartIncluding": "0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_3000_p3-622_cpu:*:*:*:*:*:*:*:*", "versionEndIncluding": "sw_v4.2.1.9", "versionStartIncluding": "0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_3000_p3-550e_cpu:*:*:*:*:*:*:*:*", "versionEndIncluding": "sw_v4.2.1.9", "versionStartIncluding": "0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_3000_p3-530_cpu:*:*:*:*:*:*:*:*", "versionEndIncluding": "sw_v4.4.1.19", "versionStartIncluding": "0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_2000_p2-622_cpu:*:*:*:*:*:*:*:*", "versionEndIncluding": "sw_v4.4.1.19", "versionStartIncluding": "0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_2000_p2-550_cpu:*:*:*:*:*:*:*:*", "versionEndIncluding": "sw_v4.4.1.19", "versionStartIncluding": "0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_1000_p1-550_cpu:*:*:*:*:*:*:*:*", "versionEndIncluding": "sw_v4.4.1.19", "versionStartIncluding": "0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_1000_p1-540_cpu:*:*:*:*:*:*:*:*", "versionEndExcluding": "sw_v4.4.1.19", "versionStartIncluding": "0", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "OR"}], "credits": [{"lang": "en", "type": "finder", "value": "Luca Borzacchiello of Nozomi Networks reported these vulnerabilities to AutomationDirect."}], "datePublic": "2025-10-23T16:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A binding to an unrestricted IP address vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read, write, or delete arbitrary files and folders on the target machine</span>"}], "value": "A binding to an unrestricted IP address vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read, write, or delete arbitrary files and folders on the target machine"}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 9.3, "baseSeverity": "CRITICAL", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "LOW", "subConfidentialityImpact": "LOW", "subIntegrityImpact": "LOW", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 10, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1327", "description": "CWE-1327", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert", "dateUpdated": "2025-10-23T22:01:28.290Z"}, "references": [{"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-296-01"}, {"url": "https://www.automationdirect.com/support/software-downloads"}, {"url": "https://support.automationdirect.com/docs/securityconsiderations.pdf"}, {"url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-296-01.json"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>AutomationDirect recommends that users do the following:</p><ul><li>Update the Productivity Suite programming software to version 4.5.0.x or higher.</li><li>Update the firmware of Productivity PLCs to the latest version. <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.automationdirect.com/support/software-downloads\">https://www.automationdirect.com/support/software-downloads</a></li><li>Although automation networks and systems come equipped with built-in password protection mechanisms, this represents a fraction of the security measures needed to safeguard these systems.</li><li>It is imperative that automation control system networks integrate data protection and security measures that match, if not exceed, the robustness of conventional business computer systems.</li><li>AutomationDirect advises users of PLCs, HMI products, and SCADA systems to conduct a thorough network security analysis to ascertain the appropriate level of security necessary for their specific application.</li></ul>\n\n<br>"}], "value": "AutomationDirect recommends that users do the following:\n\n * Update the Productivity Suite programming software to version 4.5.0.x or higher.\n * Update the firmware of Productivity PLCs to the latest version. https://www.automationdirect.com/support/software-downloads \n * Although automation networks and systems come equipped with built-in password protection mechanisms, this represents a fraction of the security measures needed to safeguard these systems.\n * It is imperative that automation control system networks integrate data protection and security measures that match, if not exceed, the robustness of conventional business computer systems.\n * AutomationDirect advises users of PLCs, HMI products, and SCADA systems to conduct a thorough network security analysis to ascertain the appropriate level of security necessary for their specific application."}], "source": {"advisory": "ICSA-25-296-01", "discovery": "EXTERNAL"}, "title": "AutomationDirect Productivity Suite Binding to an Unrestricted IP Address CWE-1327", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>AutomationDirect has identified the following mitigations for instances where systems cannot be upgraded to the latest version:</p><ul><li>Physically disconnect the PLC from any external networks, including the internet, local area networks (LANs), and other interconnected systems.</li><li>Configure network segmentation to isolate the PLC from other devices and systems within the organization.</li><li>Implement firewall rules or network access control (NAC) policies to block incoming and outgoing traffic to the PLC.</li><li>Please refer to <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.automationdirect.com/docs/securityconsiderations.pdf\">AutomationDirect's security considerations</a>&nbsp;for additional information.</li><li>If you have any questions regarding this issue, please contact AutomationDirect Technical Support at 770-844-4200 or 800-633-0405 for further assistance.</li></ul>\n\n<br>"}], "value": "AutomationDirect has identified the following mitigations for instances where systems cannot be upgraded to the latest version:\n\n * Physically disconnect the PLC from any external networks, including the internet, local area networks (LANs), and other interconnected systems.\n * Configure network segmentation to isolate the PLC from other devices and systems within the organization.\n * Implement firewall rules or network access control (NAC) policies to block incoming and outgoing traffic to the PLC.\n * Please refer to AutomationDirect's security considerations https://support.automationdirect.com/docs/securityconsiderations.pdf \u00a0for additional information.\n * If you have any questions regarding this issue, please contact AutomationDirect Technical Support at 770-844-4200 or 800-633-0405 for further assistance."}], "x_generator": {"engine": "Vulnogram 0.4.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-10-24T14:31:36.983809Z", "id": "CVE-2025-61934", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-24T14:31:43.765Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-61934", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-10-24T14:31:36.983809Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-24T14:31:40.890Z"}}], "cna": {"title": "AutomationDirect Productivity Suite Binding to an Unrestricted IP Address CWE-1327", "source": {"advisory": "ICSA-25-296-01", "discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Luca Borzacchiello of Nozomi Networks reported these vulnerabilities to AutomationDirect."}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 9.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "LOW", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "LOW", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "LOW", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 10, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "AutomationDirect", "product": "Productivity Suite", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "SW V4.2.1.9"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "Productivity 3000 P3-622 CPU", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "SW V4.2.1.9"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "Productivity 3000 P3-550E CPU", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "SW V4.2.1.9"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "Productivity 3000 P3-530 CPU", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "SW v4.4.1.19"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "Productivity 2000 P2-622 CPU", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "SW v4.4.1.19"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "Productivity 2000 P2-550 CPU", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "SW v4.4.1.19"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "Productivity 1000 P1-550 CPU", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "SW v4.4.1.19"}], "defaultStatus": "unaffected"}, {"vendor": "AutomationDirect", "product": "Productivity 1000 P1-540 CPU", "versions": [{"status": "affected", "version": "0", "lessThan": "SW v4.4.1.19", "versionType": "custom"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "AutomationDirect recommends that users do the following:\n\n * Update the Productivity Suite programming software to version 4.5.0.x or higher.\n * Update the firmware of Productivity PLCs to the latest version. https://www.automationdirect.com/support/software-downloads \n * Although automation networks and systems come equipped with built-in password protection mechanisms, this represents a fraction of the security measures needed to safeguard these systems.\n * It is imperative that automation control system networks integrate data protection and security measures that match, if not exceed, the robustness of conventional business computer systems.\n * AutomationDirect advises users of PLCs, HMI products, and SCADA systems to conduct a thorough network security analysis to ascertain the appropriate level of security necessary for their specific application.", "supportingMedia": [{"type": "text/html", "value": "<p>AutomationDirect recommends that users do the following:</p><ul><li>Update the Productivity Suite programming software to version 4.5.0.x or higher.</li><li>Update the firmware of Productivity PLCs to the latest version. <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.automationdirect.com/support/software-downloads\">https://www.automationdirect.com/support/software-downloads</a></li><li>Although automation networks and systems come equipped with built-in password protection mechanisms, this represents a fraction of the security measures needed to safeguard these systems.</li><li>It is imperative that automation control system networks integrate data protection and security measures that match, if not exceed, the robustness of conventional business computer systems.</li><li>AutomationDirect advises users of PLCs, HMI products, and SCADA systems to conduct a thorough network security analysis to ascertain the appropriate level of security necessary for their specific application.</li></ul>\n\n<br>", "base64": false}]}], "datePublic": "2025-10-23T16:00:00.000Z", "references": [{"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-296-01"}, {"url": "https://www.automationdirect.com/support/software-downloads"}, {"url": "https://support.automationdirect.com/docs/securityconsiderations.pdf"}, {"url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-296-01.json"}], "workarounds": [{"lang": "en", "value": "AutomationDirect has identified the following mitigations for instances where systems cannot be upgraded to the latest version:\n\n * Physically disconnect the PLC from any external networks, including the internet, local area networks (LANs), and other interconnected systems.\n * Configure network segmentation to isolate the PLC from other devices and systems within the organization.\n * Implement firewall rules or network access control (NAC) policies to block incoming and outgoing traffic to the PLC.\n * Please refer to AutomationDirect's security considerations https://support.automationdirect.com/docs/securityconsiderations.pdf \u00a0for additional information.\n * If you have any questions regarding this issue, please contact AutomationDirect Technical Support at 770-844-4200 or 800-633-0405 for further assistance.", "supportingMedia": [{"type": "text/html", "value": "<p>AutomationDirect has identified the following mitigations for instances where systems cannot be upgraded to the latest version:</p><ul><li>Physically disconnect the PLC from any external networks, including the internet, local area networks (LANs), and other interconnected systems.</li><li>Configure network segmentation to isolate the PLC from other devices and systems within the organization.</li><li>Implement firewall rules or network access control (NAC) policies to block incoming and outgoing traffic to the PLC.</li><li>Please refer to <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.automationdirect.com/docs/securityconsiderations.pdf\">AutomationDirect's security considerations</a>&nbsp;for additional information.</li><li>If you have any questions regarding this issue, please contact AutomationDirect Technical Support at 770-844-4200 or 800-633-0405 for further assistance.</li></ul>\n\n<br>", "base64": false}]}], "x_generator": {"engine": "Vulnogram 0.4.0"}, "descriptions": [{"lang": "en", "value": "A binding to an unrestricted IP address vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read, write, or delete arbitrary files and folders on the target machine", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">A binding to an unrestricted IP address vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read, write, or delete arbitrary files and folders on the target machine</span>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1327", "description": "CWE-1327"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_suite:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "sw_v4.2.1.9", "versionStartIncluding": "0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_3000_p3-622_cpu:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "sw_v4.2.1.9", "versionStartIncluding": "0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_3000_p3-550e_cpu:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "sw_v4.2.1.9", "versionStartIncluding": "0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_3000_p3-530_cpu:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "sw_v4.4.1.19", "versionStartIncluding": "0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_2000_p2-622_cpu:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "sw_v4.4.1.19", "versionStartIncluding": "0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_2000_p2-550_cpu:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "sw_v4.4.1.19", "versionStartIncluding": "0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_1000_p1-550_cpu:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "sw_v4.4.1.19", "versionStartIncluding": "0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:automationdirect:productivity_1000_p1-540_cpu:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "sw_v4.4.1.19", "versionStartIncluding": "0"}], "operator": "OR"}], "operator": "OR"}], "providerMetadata": {"orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert", "dateUpdated": "2025-10-23T22:01:28.290Z"}}}, "cveMetadata": {"cveId": "CVE-2025-61934", "state": "PUBLISHED", "dateUpdated": "2025-10-24T14:31:43.765Z", "dateReserved": "2025-10-21T21:55:11.850Z", "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "datePublished": "2025-10-23T22:01:28.290Z", "assignerShortName": "icscert"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A binding to an unrestricted IP address vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read, write, or delete arbitrary files and folders on the target machine"}], "id": "CVE-2025-61934", "lastModified": "2025-10-27T13:20:15.637", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 10.0, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 6.0, "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 9.3, "baseSeverity": "CRITICAL", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "LOW", "subConfidentialityImpact": "LOW", "subIntegrityImpact": "LOW", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "ics-cert@hq.dhs.gov", "type": "Secondary"}]}, "published": "2025-10-23T22:15:48.710", "references": [{"source": "ics-cert@hq.dhs.gov", "url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-296-01.json"}, {"source": "ics-cert@hq.dhs.gov", "url": "https://support.automationdirect.com/docs/securityconsiderations.pdf"}, {"source": "ics-cert@hq.dhs.gov", "url": "https://www.automationdirect.com/support/software-downloads"}, {"source": "ics-cert@hq.dhs.gov", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-296-01"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1327"}], "source": "ics-cert@hq.dhs.gov", "type": "Primary"}]}

{}