Remote Code Execution Vulnerability in Main Web Interface by Vulnerable Vendor
CVE-2025-41683

8.8HIGH

Key Information:

Vendor: Weidmueller
Status: Ie-sr-2tx-wl; Ie-sr-2tx-wl-4g-eu; Ie-sr-2tx-wl-4g-us-v
Vendor: CVE Published:; 23 July 2025

🔔 Create Weidmueller Vulnerability Alert

What is CVE-2025-41683?

An authenticated remote attacker can exploit a vulnerability in the Main Web Interface, allowing them to execute arbitrary commands with root privileges. This security flaw arises from improper sanitization of user input during specific operations. The lack of validation enables the attacker to manipulate inputs maliciously, posing a significant risk to the integrity and confidentiality of affected devices.

Affected Version(s)

IE-SR-2TX-WL V0.0

IE-SR-2TX-WL-4G-EU V0.0

IE-SR-2TX-WL-4G-US-V V0.0

References

https://certvde.com/de/advisories/VDE-2025-052

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 23, 2025
Vulnerability Reserved
Apr 16, 2025

Credit

Reid Wightman of Dragos Inc.