CVE-2025-41652
published 2025-05-27CVE-2025-41652: The devices are vulnerable to an authentication bypass due to flaws in the authorization mechanism. An unauthenticated remote attacker could exploit this…
PriorityP266critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.39%
31.3th percentile
The devices are vulnerable to an authentication bypass due to flaws in the authorization mechanism. An unauthenticated remote attacker could exploit this weakness by performing brute-force attacks to guess valid credentials or by using MD5 collision techniques to forge authentication hashes, potentially compromising the device.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| weidmueller | ie-sw-pl10m-3gt-7tx | >= 0.0.0 < 3.3.34 | 3.3.34 |
| weidmueller | ie-sw-pl10mt-3gt-7tx | >= 0.0.0 < 3.3.34 | 3.3.34 |
| weidmueller | ie-sw-pl16m-16tx | >= 0.0.0 < 3.4.32 | 3.4.32 |
| weidmueller | ie-sw-pl16mt-16tx | >= 0.0.0 < 3.4.32 | 3.4.32 |
| weidmueller | ie-sw-pl18m-2gc-16tx | >= 0.0.0 < 3.4.40 | 3.4.40 |
| weidmueller | ie-sw-pl18mt-2gc-16tx | >= 0.0.0 < 3.4.40 | 3.4.40 |
| weidmueller | ie-sw-vl05m-5tx | >= 0.0.0 < 3.6.32 | 3.6.32 |
| weidmueller | ie-sw-vl05mt-5tx | >= 0.0.0 < 3.6.32 | 3.6.32 |
| weidmueller | ie-sw-vl08mt-5tx-1sc-2scs | >= 0.0.0 < 3.5.36 | 3.5.36 |
| weidmueller | ie-sw-vl08mt-6tx-2sc | >= 0.0.0 < 3.5.36 | 3.5.36 |
| weidmueller | ie-sw-vl08mt-6tx-2scs | >= 0.0.0 < 3.5.36 | 3.5.36 |
| weidmueller | ie-sw-vl08mt-6tx-2st | >= 0.0.0 < 3.5.36 | 3.5.36 |
| weidmueller | ie-sw-vl08mt-8tx | >= 0.0.0 < 3.6.32 | 3.6.32 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-05-27
Published