CVE-2025-50109

Summary

Emerson ValveLink Products store sensitive information in cleartext within a resource that might be accessible to another control sphere.

Affected Software

VendorProductVersion RangeStatus
EmersonValveLink SOLO0 < ValveLink 14.0affected
EmersonValveLink DTM0 < ValveLink 14.0affected
EmersonValveLink PRM0 < ValveLink 14.0affected
EmersonValveLink SNAP-ON0 < ValveLink 14.0affected

Weaknesses

  • CWE-316: CWE-316

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References