CVE-2025-60038

High CVSS: 7.8

A vulnerability has been identified in Rexroth IndraWorks. This flaw allows an attacker to execute arbitrary code on the user's system by parsing a manipulated file containing malicious serialized data. Exploitation requires user interaction, specifically opening a specially crafted file, which then causes the application to deserialize the malicious data, enabling Remote Code Execution (RCE). This can lead to a complete compromise of the system running Rexroth IndraWorks.

Vendor

Bosch

Product

Rexroth Indraworks

CWE

CWE-502

Yayın Tarihi

2026-02-18 14:16:04

Güncelleme

2026-02-24 16:01:50

Source Identifier

psirt@bosch.com

KEV Date Added

Kategoriler

CWE-502 Rexroth Indraworks HIGH Bosch 2026

Referanslar

https://psirt.bosch.com/security-advisories/BOSCH-SA-591522.html

Benzer Kayıtlar

High

CVE-2025-60035

A vulnerability has been identified in the OPC.Testclient utility, which is included in Rexroth IndraWorks. All versions…

High

CVE-2025-60036

A vulnerability has been identified in the UA.Testclient utility, which is included in Rexroth IndraWorks. All versions…

High

CVE-2025-60037

A vulnerability has been identified in Rexroth IndraWorks. This flaw allows an attacker to execute arbitrary code on the…