Description
Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a certain point. An attacker can manually change the system time to exploit this limitation, potentially causing errors in authentication and leading to a denial-of-service condition.
References (2)
Core 2
Core References
Various Sources
https://www.doverfuelingsolutions.com/mea/en/products-and-solutions/automatic-tank-gauging/consoles/progauge-maglink-lx-4-console.html
Third Party Advisory, US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-07
Scores
CVSS v3
8.2
EPSS
0.0037
EPSS Percentile
28.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-190
Status
published
Products (3)
Dover Fueling Solutions/ProGauge MagLink LX 4
< 4.20.3
Dover Fueling Solutions/ProGauge MagLink LX Plus
< 4.20.3
Dover Fueling Solutions/ProGauge MagLink LX Ultimate
< 5.20.3
Published
Sep 18, 2025
Tracked Since
Feb 18, 2026