Search
Find a vulnerability
Search criteria
2 vulnerabilities found for Promag 10 with Modbus by Endress+Hauser
CVE-2025-41690 (GCVE-0-2025-41690)
Vulnerability from nvd – Published: 2025-09-02 08:12 – Updated: 2025-09-02 13:48
VLAI
Title
Endress+Hauser: Proline 10 Maintenance credentials may be exposed under certain conditions
Summary
A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user (Maintenance) by viewing the device’s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive configuration settings and the ability to modify device parameters.
Severity
7.4 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-532 - Insertion of Sensitive Information into Log File
Assigner
References
1 reference
Impacted products
6 products
| Vendor | Product | Version | |
|---|---|---|---|
| Endress+Hauser | Promag 10 with HART |
Affected:
0 , < 01.00.06
(semver)
|
|
| Endress+Hauser | Promag 10 with IO-Link |
Affected:
0 , < 01.00.02
(semver)
|
|
| Endress+Hauser | Promag 10 with Modbus |
Affected:
0 , < 01.00.06
(semver)
|
|
| Endress+Hauser | Promass 10 with HART |
Affected:
0 , < 01.00.06
(semver)
|
|
| Endress+Hauser | Promass 10 with IO-Link |
Affected:
0 , < 01.00.02
(semver)
|
|
| Endress+Hauser | Promass 10 with Modbus |
Affected:
0 , < 01.00.06
(semver)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-41690",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-09-02T13:48:53.162675Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-09-02T13:48:59.186Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Promag 10 with HART",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.06",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promag 10 with IO-Link",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.02",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promag 10 with Modbus",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.06",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promass 10 with HART",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.06",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promass 10 with IO-Link",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.02",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promass 10 with Modbus",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.06",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user (Maintenance) by viewing the device\u2019s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive configuration settings and the ability to modify device parameters."
}
],
"value": "A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user (Maintenance) by viewing the device\u2019s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive configuration settings and the ability to modify device parameters."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-532",
"description": "CWE-532 Insertion of Sensitive Information into Log File",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-09-02T08:12:13.946Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/en/advisories/VDE-2025-068"
}
],
"source": {
"advisory": "VDE-2025-068",
"defect": [
"CERT@VDE#641830"
],
"discovery": "UNKNOWN"
},
"title": "Endress+Hauser: Proline 10 Maintenance credentials may be exposed under certain conditions",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2025-41690",
"datePublished": "2025-09-02T08:12:13.946Z",
"dateReserved": "2025-04-16T11:17:48.309Z",
"dateUpdated": "2025-09-02T13:48:59.186Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-41690 (GCVE-0-2025-41690)
Vulnerability from cvelistv5 – Published: 2025-09-02 08:12 – Updated: 2025-09-02 13:48
VLAI
Title
Endress+Hauser: Proline 10 Maintenance credentials may be exposed under certain conditions
Summary
A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user (Maintenance) by viewing the device’s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive configuration settings and the ability to modify device parameters.
Severity
7.4 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-532 - Insertion of Sensitive Information into Log File
Assigner
References
1 reference
Impacted products
6 products
| Vendor | Product | Version | |
|---|---|---|---|
| Endress+Hauser | Promag 10 with HART |
Affected:
0 , < 01.00.06
(semver)
|
|
| Endress+Hauser | Promag 10 with IO-Link |
Affected:
0 , < 01.00.02
(semver)
|
|
| Endress+Hauser | Promag 10 with Modbus |
Affected:
0 , < 01.00.06
(semver)
|
|
| Endress+Hauser | Promass 10 with HART |
Affected:
0 , < 01.00.06
(semver)
|
|
| Endress+Hauser | Promass 10 with IO-Link |
Affected:
0 , < 01.00.02
(semver)
|
|
| Endress+Hauser | Promass 10 with Modbus |
Affected:
0 , < 01.00.06
(semver)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-41690",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-09-02T13:48:53.162675Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-09-02T13:48:59.186Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Promag 10 with HART",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.06",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promag 10 with IO-Link",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.02",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promag 10 with Modbus",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.06",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promass 10 with HART",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.06",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promass 10 with IO-Link",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.02",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Promass 10 with Modbus",
"vendor": "Endress+Hauser",
"versions": [
{
"lessThan": "01.00.06",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user (Maintenance) by viewing the device\u2019s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive configuration settings and the ability to modify device parameters."
}
],
"value": "A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user (Maintenance) by viewing the device\u2019s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive configuration settings and the ability to modify device parameters."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-532",
"description": "CWE-532 Insertion of Sensitive Information into Log File",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-09-02T08:12:13.946Z",
"orgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"shortName": "CERTVDE"
},
"references": [
{
"url": "https://certvde.com/en/advisories/VDE-2025-068"
}
],
"source": {
"advisory": "VDE-2025-068",
"defect": [
"CERT@VDE#641830"
],
"discovery": "UNKNOWN"
},
"title": "Endress+Hauser: Proline 10 Maintenance credentials may be exposed under certain conditions",
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "270ccfa6-a436-4e77-922e-914ec3a9685c",
"assignerShortName": "CERTVDE",
"cveId": "CVE-2025-41690",
"datePublished": "2025-09-02T08:12:13.946Z",
"dateReserved": "2025-04-16T11:17:48.309Z",
"dateUpdated": "2025-09-02T13:48:59.186Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}