CVE-2025-61934

🗓️ 23 Oct 2025 22:01:28Reported by icscertType

Unauthenticated attacker binds IP on Productivity Suite and uses PLC simulator to read, write, or delete files.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-61934	23 Oct 202510:00	–	circl
CNNVD	AutomationDirect Productivity Suite 安全漏洞	23 Oct 202500:00	–	cnnvd
Cvelist	CVE-2025-61934 AutomationDirect Productivity Suite Binding to an Unrestricted IP Address CWE-1327	23 Oct 202522:01	–	cvelist
EUVD	EUVD-2025-35740	24 Oct 202500:30	–	euvd
NVD	CVE-2025-61934	23 Oct 202522:15	–	nvd
Positive Technologies	PT-2025-43570	23 Oct 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-61934	24 Oct 202522:38	–	redhatcve
Vulnrichment	CVE-2025-61934 AutomationDirect Productivity Suite Binding to an Unrestricted IP Address CWE-1327	23 Oct 202522:01	–	vulnrichment

Vulners

CNA

Node

automationdirect productivity_suiteRange≤4.2.1.9

automationdirect productivity_3000_p3-622_cpuRange≤4.2.1.9

automationdirect productivity_3000_p3-550e_cpuRange≤4.2.1.9

automationdirect productivity_3000_p3-530_cpuRange≤4.4.1.19

automationdirect productivity_2000_p2-622_cpuRange≤4.4.1.19

automationdirect productivity_2000_p2-550_cpuRange≤4.4.1.19

automationdirect productivity_1000_p1-550_cpuRange≤4.4.1.19

automationdirect productivity_1000_p1-540_cpuRange<4.4.1.19

[
  {
    "defaultStatus": "unaffected",
    "product": "Productivity Suite",
    "vendor": "AutomationDirect",
    "versions": [
      {
        "lessThanOrEqual": "SW V4.2.1.9",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Productivity 3000 P3-622 CPU",
    "vendor": "AutomationDirect",
    "versions": [
      {
        "lessThanOrEqual": "SW V4.2.1.9",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Productivity 3000 P3-550E CPU",
    "vendor": "AutomationDirect",
    "versions": [
      {
        "lessThanOrEqual": "SW V4.2.1.9",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Productivity 3000 P3-530 CPU",
    "vendor": "AutomationDirect",
    "versions": [
      {
        "lessThanOrEqual": "SW v4.4.1.19",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Productivity 2000 P2-622 CPU",
    "vendor": "AutomationDirect",
    "versions": [
      {
        "lessThanOrEqual": "SW v4.4.1.19",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Productivity 2000 P2-550 CPU",
    "vendor": "AutomationDirect",
    "versions": [
      {
        "lessThanOrEqual": "SW v4.4.1.19",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Productivity 1000 P1-550 CPU",
    "vendor": "AutomationDirect",
    "versions": [
      {
        "lessThanOrEqual": "SW v4.4.1.19",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Productivity 1000 P1-540 CPU",
    "vendor": "AutomationDirect",
    "versions": [
      {
        "lessThan": "SW v4.4.1.19",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
support	www.support.automationdirect.com/docs/securityconsiderations.pdf
automationdirect	www.automationdirect.com/support/software-downloads
cisa	www.cisa.gov/news-events/ics-advisories/icsa-25-296-01
github	www.github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-296-01.json

15 Apr 2026 00:35Current

6.9Medium risk

Vulners AI Score6.9

CVSS 49.3

CVSS 3.110

EPSS0.00368

SSVC

CWE-1327