CVE-2025-14466

Medium CVSS: 6.9

A vulnerability in the web interface of the Güralp Fortimus Series, Minimus Series and Certimus Series allows an unauthenticated attacker with network access to send specially-crafted HTTP requests that can cause the web service process to deliberately restart. Although this mechanism limits the impact of the attack, it results in a brief denial-of-service condition during the restart.

Vendor

Product

CWE

CWE-770

Yayın Tarihi

2025-12-16 22:15:46

Güncelleme

2025-12-18 15:08:06

Source Identifier

ics-cert@hq.dhs.gov

KEV Date Added

Kategoriler

CWE-770 MEDIUM 2025

Referanslar

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-350-01.json https://www.cisa.gov/news-events/ics-advisories/icsa-25-350-01