CVE-2025-62688

CVE-2025-62688 concerns Productivity Suite software v4.4.1.19, where an incorrect permission assignment for a critical resource enables a user with low-privileged credentials to change their role and gain full control access to the project. The Red Hat, NVD, and other feeds corroborate the same d...

CISA Releases Eight Industrial Control Systems Advisories

CISA released eight Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-296-01 AutomationDirect Productivity Suite ICSA-25-296-02 ASKI Energy ALS-Mini-S8 and ALS-Mini-S4...

AutomationDirect Productivity Suite

RISK EVALUATION Successful exploitation of these vulnerabilities could enable an attacker to execute arbitrary code, disclose information, gain full-control access to projects, or obtain read and write access to files. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to...

AutomationDirect Productivity Suite 安全漏洞

AutomationDirect Productivity Suite is a programmable logic controller programming software from AutomationDirect, Inc. A security vulnerability exists in AutomationDirect Productivity Suite version v4.4.1.19, which originates from a binding to an unrestricted IP address and could allow an...

AutomationDirect Productivity Suite 授权问题漏洞

AutomationDirect Productivity Suite is a programmable logic controller programming software from AutomationDirect. An authorization issue vulnerability exists in AutomationDirect Productivity Suite version v4.4.1.19, which stems from a weak password recovery mechanism that allows an attacker to...

AutomationDirect Productivity Suite 安全漏洞

AutomationDirect Productivity Suite is a programmable logic controller programming software from AutomationDirect, Inc. A security vulnerability exists in AutomationDirect Productivity Suite version 4.4.1.19, which stems from a relative path traversal vulnerability that could lead to the executio...