CVE-2025-55067

Summary

The TLS4B ATG system is vulnerable to improper handling of Unix time values that exceed the 2038 epoch rollover. When the system clock reaches January 19, 2038, it resets to December 13, 1901, causing authentication failures and disrupting core system functionalities such as login access, history visibility, and leak detection termination. This vulnerability could allow an attacker to manipulate the system time to trigger a denial of service (DoS) condition, leading to administrative lockout, operational timer failures, and corrupted log entries.

Affected Software

VendorProductVersion RangeStatus
Veeder-RootTLS4B Automatic Tank Gauge System0 < 11.Aaffected

Weaknesses

  • CWE-190: CWE-190 Integer Overflow or Wraparound

Workarounds

Veeder-Root is aware of the vulnerability and will provide a fix for it. Until a fix is available, users should adhere to the network security best practices https://www.veeder.com/us/network-security-reminder  provided by Veeder-Root. Additionally, users should make all efforts to protect the borders of their environment to prevent bad actors from infiltrating and causing this issue.

Veeder-Root advises that their ASCs review and implement these best practices for network security with their users, when installing a new console or setting up a network port.

Contact Veeder-Root Technical Support at +1.800.323.1799 for additional help or questions.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References