CNNVD-202506-3031 Information

CNNVD ID

CNNVD-202506-3031

Related CVE

CVE-2025-48461

• CNNVD Published: 2025-06-24

Description (Chinese)

Advantech WISE-4060LAN是中国台湾研华（Advantech）公司的一个工业自动化控制器。 Advantech多款产品存在安全漏洞，该漏洞源于会话cookie可预测导致暴力破解和账户接管。以下产品受到影响：WISE-4010LAN、WISE-4050LAN和WISE-4060LAN。

Description (English)

Advantech Wise-4060LAN is an industrial automation controller of the Chinese company Advantech. There is a safety gap in Advantech ’ s multiple products, which results from a predictable session cookie that leads to violent breakdowns and account takeovers. The following products were affected: WISE-4010LAN, WISE-4050LAN and WISE-4060LAN.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

研华

Published

2025-06-24

Last Modified

2026-02-24

References

https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-061/

Patch

https://www.advantech.com/en-sg/products/iot-ethernet-i-o-modules-wise-4000lan/sub_da5ad5b2-09b9-418c-9f6a-f4a6e2f8f53a