CVE-2025-58456

Опубликовано: 23 окт. 2025

Источник: nvd

CVSS3: 6.8

EPSS Низкий

Описание

A relative path traversal vulnerability was discovered in Productivity Suite software version

4.4.1.19.

The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read arbitrary files on the target machine.

Ссылки

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-296-01.json
https://support.automationdirect.com/docs/securityconsiderations.pdf
https://www.automationdirect.com/support/software-downloads
https://www.cisa.gov/news-events/ics-advisories/icsa-25-296-01

EPSS

Процентиль: 27%

0.00097

Низкий

6.8 Medium

CVSS3

Дефекты

CWE-23

Связанные уязвимости

GHSA-7xp6-cgj4-vvc8