CNNVD-202509-190 Information

CNNVD ID

CNNVD-202509-190

Related CVE

CVE-2025-52545

• CNNVD Published: 2025-09-02

Description (Chinese)

Copeland E3 Supervisory Control是美国Copeland公司的一款工业设备控制系统。 Copeland E3 Supervisory Control 2.31F01之前版本存在安全漏洞，该漏洞源于RCI服务API调用不当，可能导致获取用户名和密码哈希。

Description (English)

Copeland E3 Supervisory Control is an industrial equipment control system of the United States company Copeland. There was a security loophole in the pre-Copeland E3 Supervisory Control 2.31F01 version, which stemmed from the inappropriate call of the RCI Service API, which could lead to the acquisition of user names and passwords for Hashi.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Copeland

Published

2025-09-02

Last Modified

2026-02-24

References

https://www.armis.com/research/frostbyte10/ https://nvd.nist.gov/vuln/detail/CVE-2025-52545

Patch

https://www.copeland.com/en-us/products/controls-monitoring-systems/facility-controls-electronics/facility-and-system-controls/supervisory-controls-e3#section9