CVE-2025-55034
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-11-15
Last updated on: 2025-11-15
Assigner: ICS-CERT
Description
Description
General Industrial Controls Lynx+ Gateway is vulnerable to a weak password requirement vulnerability, which may
allow an attacker to execute a brute-force attack resulting in
unauthorized access and login.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| general_industrial_controls | lynx_gateway | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-521 | The product does not require that users should have strong passwords. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in General Industrial Controls Lynx+ Gateway is due to weak password requirements, which allows an attacker to perform a brute-force attack to gain unauthorized access and login to the system.
How can this vulnerability impact me? :
This vulnerability can lead to unauthorized access to the Lynx+ Gateway system, potentially allowing attackers to compromise system integrity and confidentiality by logging in without proper authorization.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70