CVE-2025-41744

Sprecher Automations SPRECON-E series uses default cryptographic keys that allow an unprivileged remote attacker to access all encrypted communications, thereby compromising confidentiality and integrity...

CVE-2025-41744

Sprecher Automations SPRECON-E series uses default cryptographic keys that allow an unprivileged remote attacker to access all encrypted communications, thereby compromising confidentiality and integrity...

CVE-2025-41742 Sprecher Automation: SPRECON-E series has a critical vulnerability due to the use of static cryptographic keys in system components

Sprecher Automations SPRECON-E-C, SPRECON-E-P, SPRECON-E-T3 is vulnerable to attack by an unauthorized remote attacker via default cryptographic keys. The use of these keys allows the attacker to read, modify, and write projects and data, or to access any device via remote maintenance...

CVE-2025-41742

The CVE-2025-41742 entry concerns Sprecher Automations SPRECON-E-C, SPRECON-E-P, and SPRECON-E-T3. Affected components are the system’s cryptographic keys, with a root cause described as the use of default cryptographic keys that can be exploited by an unauthorized remote attacker. Consequences s...

CVE-2025-41743

The CVE-2025-41743 entry affects Sprecher Automation SPRECON-E-C, SPRECON-E-P, and SPRECON-E-T3. Root cause: insufficient encryption strength in update images. Impact: a local, unprivileged attacker can extract data from update images and obtain limited information about system architecture and i...

CVE-2025-41743 Sprecher Automation: SPRECON-E series prone to weak encryption of update files

Insufficient encryption strength in Sprecher Automation SPRECON-E-C, SPRECON-E-P, and SPRECON-E-T3 allows a local unprivileged attacker to extract data from update images and thus obtain limited information about the architecture and internal processes...

CVE-2025-41744 Sprecher Automation: SPRECON-E series has static default key material for TLS connections

Sprecher Automations SPRECON-E series uses default cryptographic keys that allow an unprivileged remote attacker to access all encrypted communications, thereby compromising confidentiality and integrity...

CVE-2025-41744

CVE-2025-41744 affects Sprecher Automation SPRECON-E series devices. Connected exploits confirm use of a default symmetric AES-256 key embedded across firmware, enabling unauthenticated remote attackers to decrypt and potentially tamper with encrypted network traffic. Impact is confidentiality an...

PT-2025-48663

Name of the Vulnerable Software and Affected Versions Sprecher Automations SPRECON-E series affected versions not specified Description The Sprecher Automations SPRECON-E series utilizes default cryptographic keys. This allows a remote attacker, without special privileges, to access all encrypted...