CVE-2025-41726

Summary

A low privileged remote attacker can execute arbitrary code by sending specially crafted calls to the web service of the Device Manager or locally via an API and can cause integer overflows which then may lead to arbitrary code execution within privileged processes.

Affected Software

VendorProductVersion RangeStatus
Beckhoff AutomationBeckhoff.Device.Manager.XAR0.0.0 < 2.5.3affected
Beckhoff AutomationMDP software package for TwinCAT/BSD0.0.0 < 1.7.0.0affected
Beckhoff AutomationMDP for Beckhoff RT Linux(R)0.0.0 < 0.0.5affected

Weaknesses

  • CWE-190: CWE-190 Integer Overflow or Wraparound

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References