CVE-2025-54855

Medium CVSS: 4.1

Cleartext storage of sensitive information was discovered in Click Programming Software version v3.60. The vulnerability can be exploited by a local user with access to the file system, while an administrator session is active, to steal credentials stored in clear text.

Vendor

Product

CWE

CWE-312

Yayın Tarihi

2025-09-23 22:15:33

Güncelleme

2025-09-24 18:11:24

Source Identifier

ics-cert@hq.dhs.gov

KEV Date Added

Kategoriler

CWE-312 MEDIUM 2025

Referanslar

https://www.automationdirect.com/support/software-downloads https://www.cisa.gov/news-events/ics-advisories/icsa-25-266-01