Primary

Context

Nedap Librix Ecoreader Missing Authentication Vulnerability Allowing Remote Code Execution

Vulnerability

A vulnerability exists in Nedap Librix Ecoreader due to missing authentication for critical functions, potentially allowing an unauthenticated attacker to execute malicious code. This issue affects all versions of Ecoreader.

Impact

Exploitation of this vulnerability could lead to remote code execution on the affected system.

Remediation

CISA recommends minimizing network exposure for control system devices, isolating them from business networks, and using secure remote access methods such as VPNs. Organizations should also consult CISA's recommended practices for ICS cybersecurity.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nedap Librix Ecoreader Missing Authentication Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating