Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2025-18090 | CVE-2025-41662 is considered redundant or unnecessary and thus should be withdrawn. Instead, a new CVE CVE-2025-41687 has been reserved to better reflect the updated analysis. |
No reference.
Wed, 23 Jul 2025 08:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-352 | |
| References |
|
|
| Metrics |
cvssV3_1
|
Wed, 23 Jul 2025 08:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Weidmueller: Security routers IE-SR-2TX are affected by Cross-Site Request Forgery | |
| Metrics |
ssvc
|
Wed, 23 Jul 2025 08:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery (CSRF) protection in the Main Web Interface (endpoint tls_iotgen_setting). | CVE-2025-41662 is considered redundant or unnecessary and thus should be withdrawn. Instead, a new CVE CVE-2025-41687 has been reserved to better reflect the updated analysis. |
Sun, 13 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Wed, 11 Jun 2025 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 11 Jun 2025 08:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery (CSRF) protection in the Main Web Interface (endpoint tls_iotgen_setting). | |
| Title | Weidmueller: Security routers IE-SR-2TX are affected by Cross-Site Request Forgery | |
| Weaknesses | CWE-352 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
Status: REJECTED
Assigner: CERTVDE
Published:
Updated: 2025-07-23T07:53:17.747Z
Reserved: 2025-04-16T11:17:48.307Z
Link: CVE-2025-41662
Updated:
Status : Rejected
Published: 2025-06-11T09:15:22.480
Modified: 2025-07-23T08:15:26.173
Link: CVE-2025-41662
No data.
OpenCVE Enrichment
No data.
No weakness.
EUVD