cbcvebase.
CVE-2025-41713
published 2025-09-15

CVE-2025-41713: During a short time frame while the device is booting an unauthenticated remote attacker can send traffic to unauthorized networks due to the switch operating…

medium6.5CVSS 3.1
AVNACLPRNUINSUCLINAL
During a short time frame while the device is booting an unauthenticated remote attacker can send traffic to unauthorized networks due to the switch operating in an undefined state until a CPU-induced reset allows proper configuration.

Affected

25 ranges
VendorProductVersion rangeFixed in
wagocc100_0751-9301< HWHW
wagocc100_0751-9301_k000-0005< HWHW
wagocc100_0751-9401< HWHW
wagocc100_0751-9402< HWHW
wagocc100_0751-9402_0000-0001< HWHW
wagocc100_0751-9403< HWHW
wagoedge_controller_0752-8303_8000-0002< HWHW
wagoedge_controller_0752-8303_8000-0002_hw_rev_32500< 04.08.0504.08.05
wagotp600_0762-4101< HWHW
wagotp600_0762-4102< HWHW
wagotp600_0762-4104< HWHW
wagotp600_0762-4201_8000-0001< HWHW
wagotp600_0762-4201_8000-0002< HWHW
wagotp600_0762-4301_8000-0002< HWHW
wagotp600_0762-4302_8000-0002< HWHW
wagotp600_0762-4303_8000-0002< HWHW
wagotp600_0762-4304_8000-0002< HWHW
wagotp600_0762-4305_8000-0002< HWHW
wagotp600_0762-4306_8000-0001< HWHW
wagotp600_0762-4306_8000-0002< HWHW
wagotp600_0762-5201_8000-0001< HWHW
wagotp600_0762-5203_8000-0001< HWHW
wagotp600_0762-5204_8000-0001< HWHW
wagotp600_0762-5205_8000-0001< HWHW
wagotp600_0762-5206_8000-0001< HWHW

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
cisa9.1CRITICAL