Primary

Context

Wiesemann & Theis Com-Server Products Insecure TLS Protocol Vulnerability

Vulnerability

Patched

A vulnerability exists in multiple Wiesemann & Theis Com-Server products running firmware versions prior to 1.60, which support the deprecated and insecure TLS 1.0 and TLS 1.1 protocols. This vulnerability allows an unauthenticated remote attacker to intercept and manipulate encrypted communications between the Com-Server and connected systems, potentially leading to unauthorized data access and credential theft.

Impact

Exploitation of this vulnerability could result in interception and manipulation of encrypted communications, allowing unauthorized access to data and theft of credentials.

Remediation

Users are advised to update the Com-Server firmware to version 1.60.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

6.7

exploitability

4.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

6.7

exploitability

4.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Wiesemann & Theis Com-Server Products Insecure TLS Protocol Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Wiesemann & Theis Com-Server++

Wiesemann & Theis Com-Server 20mA

Wiesemann & Theis Com-Server OEM

Wiesemann & Theis Com-Server PoE 3x Isolated

Wiesemann & Theis Com-Server UL

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating