CVE-2025-1060

Summary

CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists that could result in the exposure of data when network traffic is being sniffed by an attacker.

Affected Software

VendorProductVersion RangeStatus
Schneider ElectricASCO 5310 Single-Channel Remote AnnunciatorAll versionsaffected
Schneider ElectricASCO 5350 Eight Channel Remote AnnunciatorAll versionsaffected

Weaknesses

  • CWE-319: CWE-319 Cleartext Transmission of Sensitive Information

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References