CVE-2025-58069 | AutomationDirect CLICK PLUS C0-0x CPU up to 3.70 Initial Message hard-coded key (icsa-25-266-01)

Inserito da Angelo Barbosa | Set 24, 2025 | CVE

A vulnerability, which was classified as problematic, was found in AutomationDirect CLICK PLUS C0-0x CPU, CLICK PLUS C0-1x CPU and CLICK PLUS C2-x CPU up to 3.70. This impacts an unknown function of the component Initial Message Handler. Executing manipulation can lead to use of hard-coded cryptographic key
.

This vulnerability is tracked as CVE-2025-58069. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.

CVE-2025-58069 | AutomationDirect CLICK PLUS C0-0x CPU up to 3.70 Initial Message hard-coded key (icsa-25-266-01)

Post correlati

CVE-2024-20437 | Cisco IOS XE up to 17.12.1y Web UI cross-site request forgery (cisco-sa-webui-csrf-ycUYxkKO)

CVE-2024-3639 | Livemesh Elementor Addons Plugin up to 8.3.7 on WordPress Posts Grid cross site scripting

CVE-2023-6165 | Restrict Usernames Emails Characters Plugin up to 3.1.3 on WordPress Setting cross site scripting

CVE-2024-13224 | SlideDeck 1 Lite Content Slider Plugin up to 1.4.8 on WordPress cross site scripting