CNNVD-202506-1586 Information

CNNVD ID

CNNVD-202506-1586

Related CVE

CVE-2025-41661

• CNNVD Published: 2025-06-11

Description (Chinese)

Weidmueller Interface IE-SR-2TX-WL是德国Weidmueller Interface公司的一款工业安全路由器。 Weidmueller Interface IE-SR-2TX-WL存在跨站请求伪造漏洞，该漏洞源于主Web接口缺少CSRF保护，可能导致未经验证的远程攻击者以root权限执行任意命令。

Description (English)

Weidmueler Interface IE-SR-2TX-WL is an industrial safety router for Weidmueler Interface in Germany. Weidmueler Interface IE-SR-2TX-WL had a cross-site request for a false loophole, which stemmed from the lack of CSRF protection at the main Web interface, which could lead uncertified remote assailants to execute arbitrary orders with root authority.

Hazard Level

Medium

Vulnerability Type

跨站请求伪造

Affected Vendor

Weidmueller Interface

Published

2025-06-11

Last Modified

2026-02-24

References

https://certvde.com/en/advisories/VDE-2025-052 https://nvd.nist.gov/vuln/detail/CVE-2025-41661