Unauthenticated File Operations in E2 Facility Management Systems by Armis
CVE-2025-52551

9.3CRITICAL

Key Information:

Vendor: Copeland Lp
Status: E2 Facility Management System
Vendor: CVE Published:; 2 September 2025

🔔 Create Copeland Lp Vulnerability Alert

What is CVE-2025-52551?

E2 Facility Management Systems contain a vulnerability that permits unauthenticated users to execute file operations on any file within the system's file structure. This flaw arises from the use of a proprietary protocol, leading to significant security risks associated with unauthorized access and potential data manipulation.

Affected Version(s)

E2 Facility Management System 0

References

https://www.armis.com/research/frostbyte10/

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 2, 2025
Vulnerability Reserved
Jun 17, 2025

Credit

Armis Labs