CNNVD-202510-3164 Information
CNNVD ID
CNNVD-202510-3164
Related CVE
- CNNVD Published: 2025-10-22
Description (Chinese)
Sauter modu680-AS是瑞士Sauter公司的一个模块化自动化站兼web服务器。 Sauter modu680-AS存在安全漏洞,该漏洞源于未经验证的远程攻击者可通过发送不完整的SOAP请求使wscserver崩溃,且该进程无法通过看门狗重启,可能导致拒绝服务。以下产品受到影响:modulo 6 devices modu680-AS、modulo 6 devices modu660-AS、modulo 6 devices modu612-LC、EY-modulo 5 modu 5 modu524、EY-modulo 5 modu 5 modu525、EY-modulo 5 ecos 5 ecos504/505。
Description (English)
Sauter Modu680-AS is a modular automation station and web server at Sauter, Switzerland. Sauter Modu680-AS has a security loophole, which stems from the fact that uncertified long-range assailants can collapse Wscserver by sending incomplete SOAP requests and that the process cannot be restarted through door-dogs, which may lead to the denial of services. The following products were affected: Modeulo 6 devices Modu680-AS, Modeulo 6 devices Modu660-AS, Modulo 6 devices Modu612-LC, EY-modulo 5 Modu 5 Modu 524, EY-modulo 5 Modu 5 Modu525, EY-modulo 5 ecos 5 ecos 504/555.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Sauter
Published
2025-10-22
Last Modified
2026-02-24
References
https://sauter.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-060.json https://access.redhat.com/security/cve/cve-2025-41724
Patch
https://sauter.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-060.json
Share on: