CVE-2025-41727

🗓️ 27 Jan 2026 11:36:54Reported by CERTVDEType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 8 Views

Local attacker bypasses Device Manager authentication to gain administrator access.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2025-41727	27 Jan 202611:36	–	attackerkb
Circl	CVE-2025-41727	27 Jan 202611:38	–	circl
CNNVD	Several products of Beckhoff Automation have security vulnerabilities.	27 Jan 202600:00	–	cnnvd
Cvelist	CVE-2025-41727 Beckhoff: Performing privileged operations and gaining administrator access	27 Jan 202611:36	–	cvelist
EUVD	EUVD-2025-206408	27 Jan 202611:36	–	euvd
NVD	CVE-2025-41727	27 Jan 202612:15	–	nvd
Positive Technologies	PT-2026-4910	27 Jan 202600:00	–	ptsecurity
RedhatCVE	CVE-2025-41727	28 Jan 202615:18	–	redhatcve
Vulnrichment	CVE-2025-41727 Beckhoff: Performing privileged operations and gaining administrator access	27 Jan 202611:36	–	vulnrichment

Vulners

Node

beckhoff beckhoff.device.manager.xarRange<2.5.3

beckhoff mdp_software_package_for_twincat/bsdRange<1.7.0.0

beckhoff mdp_for_beckhoff_rt_linuxRange<0.0.5

[
  {
    "defaultStatus": "unaffected",
    "product": "Beckhoff.Device.Manager.XAR",
    "vendor": "Beckhoff Automation",
    "versions": [
      {
        "lessThan": "2.5.3",
        "status": "affected",
        "version": "0.0.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MDP software package for TwinCAT/BSD",
    "vendor": "Beckhoff Automation",
    "versions": [
      {
        "lessThan": "1.7.0.0",
        "status": "affected",
        "version": "0.0.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MDP for Beckhoff RT Linux(R)",
    "vendor": "Beckhoff Automation",
    "versions": [
      {
        "lessThan": "0.0.5",
        "status": "affected",
        "version": "0.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
certvde	www.certvde.com/de/advisories/VDE-2025-092

15 Apr 2026 00:35Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.17.8

EPSS0.00009

SSVC

CWE-420