ГлавнаяУязвимости → CVE-2025-58078
7.5высокая

CVE-2025-58078

Описание

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and write files with arbitrary data on the target machine.

CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H
Источники
https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-296-01.jsonhttps://support.automationdirect.com/docs/securityconsiderations.pdfhttps://www.automationdirect.com/support/software-downloadshttps://www.cisa.gov/news-events/ics-advisories/icsa-25-296-01