CVE-2025-61977
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-10-23

Last updated on: 2025-10-27

Assigner: ICS-CERT

Description
A weak password recovery mechanism for forgotten password vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an attacker to decrypt an encrypted project by answering just one recovery question.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-10-23
Last Modified
2025-10-27
Generated
2026-06-16
AI Q&A
2025-10-24
EPSS Evaluated
2026-06-14
NVD
CVE-2025-61977
Affected Vendors & Products
Showing 9 associated CPEs
Vendor Product Version / Range
automationdirect productivity_3000 p3-550e
automationdirect productivity_3000 p3-622
automationdirect productivity_suite *
automationdirect productivity_1000 p1-550
automationdirect productivity_1000 p1-540
automationdirect productivity_2000 p2-622
automationdirect productivity_3000 p3-530
automationdirect productivity_2000 p2-550
automationdirect productivity_suite 4.4.1.19
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-640 The product contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a weak password recovery mechanism in Productivity Suite software version v4.4.1.19. It allows an attacker to decrypt an encrypted project by correctly answering just one recovery question, bypassing stronger authentication methods.

Impact Analysis

The vulnerability can lead to unauthorized access to encrypted projects, potentially exposing sensitive or confidential information. This can result in data breaches, loss of data integrity, and compromise of confidentiality, integrity, and availability of affected projects.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-61977. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart