CNNVD-202512-076 Information

CNNVD ID

CNNVD-202512-076

Related CVE

CVE-2025-54848

• CNNVD Published: 2025-12-01

Description (Chinese)

Socomec DIRIS Digiware M-70是法国Socomec公司的一个多点温度测量模块。 Socomec DIRIS Digiware M-70 1.6.9版本存在访问控制错误漏洞，该漏洞源于Modbus TCP和Modbus RTU over TCP功能存在特制网络请求，可能导致拒绝服务。

Description (English)

Socomec DIRIS digiware M-70 is a multi-point temperature measurement module of Socomec, France. Version 1.6.9 of Socomec DIRIS digiware M-70 1.6.9 contains a bug in access control resulting from the existence of a customized network request for Modbus TCP and Modbus RRU over TCP functions, which may result in the denial of services.

Hazard Level

Medium

Vulnerability Type

访问控制错误

Affected Vendor

溯高美索克曼

Published

2025-12-01

Last Modified

2026-02-24

References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2248 https://access.redhat.com/security/cve/cve-2025-54848

Patch

https://www.socomec.us/en-us/reference/48290222