CVE-2025-41713

MEDIUM EPSS 26.5%

Published Sep 15, 20259mo ago · Modified Jun 17, 20261w ago

6.5 CVSS 3.1

Medium

Published Sep 15, 2025 9mo ago

Last Modified Jun 17, 2026 1w ago

Description

During a short time frame while the device is booting an unauthenticated remote attacker can send traffic to unauthorized networks due to the switch operating in an undefined state until a CPU-induced reset allows proper configuration.

CVSS Details

Base Score

6.5

Exploitability

3.9

Impact

2.5

Vector string

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality Low

Integrity None

Availability Low

Threat Intelligence

EPSS Exploit Probability

26.5% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-1188

References 2

certvde.com https://certvde.com/en/advisories/VDE-2025-083
wago.csaf-tp.certvde.com https://wago.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-083.json

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.