CVE-2025-41654

Summary

An unauthenticated remote attacker can access information about running processes via the SNMP protocol. The amount of returned data can trigger a reboot by the watchdog.

Affected Software

VendorProductVersion RangeStatus
Pepperl+FuchsProfinet Gateway FB8122A.1.EL0 < V1.3.13affected
Pepperl+FuchsProfinet Gateway LB8122A.1.EL0 < V1.3.13affected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References