CVE-2025-41722

High CVSS: 7.5

The wsc server uses a hard-coded certificate to check the authenticity of SOAP messages. An unauthenticated remote attacker can extract private keys from the Software of the affected devices.

Vendor

Product

CWE

CWE-798

Yayın Tarihi

2025-10-22 07:15:33

Güncelleme

2025-10-22 21:12:48

Source Identifier

info@cert.vde.com

KEV Date Added

Kategoriler

CWE-798 HIGH 2025

Referanslar

https://sauter.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-060.json