CVE-2025-41653
published 2025-05-27CVE-2025-41653: An unauthenticated remote attacker can exploit a denial-of-service vulnerability in the device's web server functionality by sending a specially crafted HTTP…
PriorityP343high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.47%
37.4th percentile
An unauthenticated remote attacker can exploit a denial-of-service vulnerability in the device's web server functionality by sending a specially crafted HTTP request with a malicious header, potentially causing the server to crash or become unresponsive.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| weidmueller | ie-sw-pl10m-3gt-7tx | >= 0.0.0 < 3.3.34 | 3.3.34 |
| weidmueller | ie-sw-pl10mt-3gt-7tx | >= 0.0.0 < 3.3.34 | 3.3.34 |
| weidmueller | ie-sw-pl16m-16tx | >= 0.0.0 < 3.4.32 | 3.4.32 |
| weidmueller | ie-sw-pl16mt-16tx | >= 0.0.0 < 3.4.32 | 3.4.32 |
| weidmueller | ie-sw-pl18m-2gc-16tx | >= 0.0.0 < 3.4.40 | 3.4.40 |
| weidmueller | ie-sw-pl18mt-2gc-16tx | >= 0.0.0 < 3.4.40 | 3.4.40 |
| weidmueller | ie-sw-vl05m-5tx | >= 0.0.0 < 3.6.32 | 3.6.32 |
| weidmueller | ie-sw-vl05mt-5tx | >= 0.0.0 < 3.6.32 | 3.6.32 |
| weidmueller | ie-sw-vl08mt-5tx-1sc-2scs | >= 0.0.0 < 3.5.36 | 3.5.36 |
| weidmueller | ie-sw-vl08mt-6tx-2sc | >= 0.0.0 < 3.5.36 | 3.5.36 |
| weidmueller | ie-sw-vl08mt-6tx-2scs | >= 0.0.0 < 3.5.36 | 3.5.36 |
| weidmueller | ie-sw-vl08mt-6tx-2st | >= 0.0.0 < 3.5.36 | 3.5.36 |
| weidmueller | ie-sw-vl08mt-8tx | >= 0.0.0 < 3.5.36 | 3.5.36 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-05-27
Published