cbcvebase.
CVE-2025-41652
published 2025-05-27

CVE-2025-41652: The devices are vulnerable to an authentication bypass due to flaws in the authorization mechanism. An unauthenticated remote attacker could exploit this…

PriorityP266critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.39%
31.3th percentile
The devices are vulnerable to an authentication bypass due to flaws in the authorization mechanism. An unauthenticated remote attacker could exploit this weakness by performing brute-force attacks to guess valid credentials or by using MD5 collision techniques to forge authentication hashes, potentially compromising the device.

Affected

13 ranges
VendorProductVersion rangeFixed in
weidmuellerie-sw-pl10m-3gt-7tx>= 0.0.0 < 3.3.343.3.34
weidmuellerie-sw-pl10mt-3gt-7tx>= 0.0.0 < 3.3.343.3.34
weidmuellerie-sw-pl16m-16tx>= 0.0.0 < 3.4.323.4.32
weidmuellerie-sw-pl16mt-16tx>= 0.0.0 < 3.4.323.4.32
weidmuellerie-sw-pl18m-2gc-16tx>= 0.0.0 < 3.4.403.4.40
weidmuellerie-sw-pl18mt-2gc-16tx>= 0.0.0 < 3.4.403.4.40
weidmuellerie-sw-vl05m-5tx>= 0.0.0 < 3.6.323.6.32
weidmuellerie-sw-vl05mt-5tx>= 0.0.0 < 3.6.323.6.32
weidmuellerie-sw-vl08mt-5tx-1sc-2scs>= 0.0.0 < 3.5.363.5.36
weidmuellerie-sw-vl08mt-6tx-2sc>= 0.0.0 < 3.5.363.5.36
weidmuellerie-sw-vl08mt-6tx-2scs>= 0.0.0 < 3.5.363.5.36
weidmuellerie-sw-vl08mt-6tx-2st>= 0.0.0 < 3.5.363.5.36
weidmuellerie-sw-vl08mt-8tx>= 0.0.0 < 3.6.323.6.32
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.