CVE-2025-41654 PEPPERL+FUCHS: Profinet Gateway LB8122A.1.EL – Device is affected by information disclosure via the SNMP protocol

An unauthenticated remote attacker can access information about running processes via the SNMP protocol. The amount of returned data can trigger a reboot by the watchdog...

CVE-2025-41654

CVE-2025-41654 affects Pepperl+Fuchs Profinet Gateway LB8122A.1.EL and FB8122A.1.EL. An unauthenticated remote attacker can access information about running processes via SNMP, with the amount of returned data potentially triggering a watchdog reboot. Public documents confirm information disclosu...

CVE-2025-41654 PEPPERL+FUCHS: Profinet Gateway LB8122A.1.EL – Device is affected by information disclosure via the SNMP protocol

An unauthenticated remote attacker can access information about running processes via the SNMP protocol. The amount of returned data can trigger a reboot by the watchdog...

CVE-2025-1985

CVE-2025-1985 matches the Pepperl+Fuchs Profinet Gateway LB8122A.1.EL / FB8122A.1.EL family. The issue is an XSS due to improper neutralization of input during web page generation, allowing an unauthenticated remote attacker to inject HTML into the Web-UI of the affected device. Documented in mul...

CVE-2025-1985 PEPPERL+FUCHS: Profinet Gateway LB8122A.1.EL – Device is affected by XSS vulnerability

Due to improper neutralization of input during web page generation XSS an unauthenticated remote attacker can inject HTML code into the Web-UI in the affected device...

CVE-2025-1985 PEPPERL+FUCHS: Profinet Gateway LB8122A.1.EL – Device is affected by XSS vulnerability

Due to improper neutralization of input during web page generation XSS an unauthenticated remote attacker can inject HTML code into the Web-UI in the affected device...

PT-2025-22886 · Pepperl+Fuchs · Profinet Gateway Fb8122A.1.El +1

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: Due to improper neutralization of input during web page generation, an unauthenticated remote attacker can inject HTML code into the Web-UI in the affected device. Recommendations: At the...

PT-2025-22904 · Pepperl+Fuchs · Profinet Gateway Fb8122A.1.El

Name of the Vulnerable Software and Affected Versions: Pepperl+Fuchs - Profinet Gateway FB8122A.1.EL version not specified Description: An unauthenticated remote attacker can access information about running processes via the SNMP protocol. The amount of returned data can trigger a reboot by the...

PT-2025-22905 · Pepperl+Fuchs · Profinet Gateway Fb8122A.1.El

Name of the Vulnerable Software and Affected Versions: Pepperl+Fuchs - Profinet Gateway FB8122A.1.EL affected versions not specified Description: An unauthenticated remote attacker can access a URL which causes the device to reboot. Recommendations: At the moment, there is no information about a...

Pepperl+Fuchs Profinet Gateway 访问控制错误漏洞

Pepperl+Fuchs Profinet Gateway is a series of gateways from Pepperl+Fuchs. An access control error vulnerability exists in Pepperl+Fuchs Profinet Gateway FB8122A.1.EL and Profinet Gateway LB8122A.1.EL, which stems from the fact that an unauthenticated, remote attacker can access specific URLs to...

Pepperl+Fuchs Profinet Gateway 跨站脚本漏洞

Pepperl+Fuchs Profinet Gateway is a series of gateways from Pepperl+Fuchs. A cross-site scripting vulnerability exists in Pepperl+Fuchs Profinet Gateway FB8122A.1.EL and Profinet Gateway LB8122A.1.EL, which stems from improper input neutralization during web page generation and could lead to a...

Pepperl+Fuchs Profinet Gateway 访问控制错误漏洞

Pepperl+Fuchs Profinet Gateway is a series of gateways from Pepperl+Fuchs. An access control error vulnerability exists in Pepperl+Fuchs Profinet Gateway FB8122A.1.EL and Profinet Gateway LB8122A.1.EL, which stems from unauthorized access to the SNMP protocol and could lead to information...

Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET

The PSIRT received a report about a vulnerability in the Gateway Flexi Soft and microScan3 PROFINET. The vulnerability is classified as a denial-of-service vulnerability and results form a mishandling of Read Implicit Request services...