Primary

Context

Weidmueller Industrial Ethernet Switches Input Validation Vulnerability Leading to Denial-of-Service

Vulnerability

A denial-of-service vulnerability has been identified in Weidmueller industrial Ethernet switches, specifically in the cmd services of various models. This vulnerability allows an unauthenticated remote attacker to exploit input validation issues, disrupting system operations and potentially causing a denial-of-service condition.

Impact

Exploitation of this vulnerability can disrupt system operations, leading to a denial-of-service condition on the affected device.

Remediation

Users are advised to update to the latest firmware version. Weidmueller has released firmware updates for all affected products. Consult the Weidmueller advisory VDE-2025-044 for specific update instructions.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

7.4

remediation

7.7

relevance

0.1

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

7.4

remediation

7.7

relevance

0.1

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Weidmueller Industrial Ethernet Switches Input Validation Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating