Thales Circutor TCPRS1+ Gateway Vulnerability Allowing Unauthorized Configuration Changes

Vulnerability

A vulnerability exists in the Thales Circutor TCPRS1+ gateway, specifically in the model D80010, which is designed to convert RS-485 communication to Ethernet or Wi-Fi. The issue arises because the device can be configured using the manufacturer's application or software via UDP, without any authentication. This flaw allows any aspect of the initial configuration to be altered using the device's MAC address.

Impact

Exploitation of this vulnerability could lead to unauthorized changes in the device's configuration, potentially allowing for malicious modifications or disruptions in service.

Added: Oct 31, 2025, 3:20 PM

Updated: Oct 31, 2025, 3:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.4

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Thales Circutor TCPRS1+ Gateway Vulnerability Allowing Unauthorized Configuration Changes

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating