CVE-2025-48733

High CVSS: 8.7

DuraComm SPM-500 DP-10iN-100-MU

lacks access controls for a function that should require user authentication. This could allow an attacker to repeatedly reboot the device.

Vendor

Product

CWE

CWE-306

Yayın Tarihi

2025-07-22 22:15:37

Güncelleme

2025-07-25 15:29:44

Source Identifier

ics-cert@hq.dhs.gov

KEV Date Added

Kategoriler

CWE-306 HIGH 2025

Referanslar

https://duracomm.com/contact-us/ https://www.cisa.gov/news-events/ics-advisories/icsa-25-203-01