CVE-2025-48466

HIGH

Modbus TCP - RCE

Title source: llm

Description

Successful exploitation of the vulnerability could allow an unauthenticated, remote attacker to send Modbus TCP packets to manipulate Digital Outputs, potentially allowing remote control of relay channel which may lead to operational or safety risks.

Exploits (1)

nomisec WORKING POC 2 stars

by shipcod3 · poc

https://github.com/shipcod3/CVE-2025-48466

View Code ZIP pw:eip

References (2)

[Exploit, Third Party Advisory] https://github.com/shipcod3/CVE-2025-48466

[Third Party Advisory] https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-061

Scores

CVSS v3 8.1

EPSS 0.0016

EPSS Percentile 36.9%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-863

Status published

Products (3)

advantech/wise-4010lan_firmware

advantech/wise-4050lan_firmware

advantech/wise-4060lan_firmware 2.02b00

Published Jun 24, 2025

Tracked Since Feb 18, 2026