CVE-2025-9365

HIGH

Fuji Electric FRENIC-Loader 4 - Code Injection

Title source: llm

Description

Fuji Electric FRENIC-Loader 4 is vulnerable to a deserialization of untrusted data when importing a file through a specified window, which may allow an attacker to execute arbitrary code.

References (2)

[Third Party Advisory, US Government Resource] https://www.cisa.gov/news-events/ics-advisories/icsa-25-245-02

[Various Sources] https://felib.fujielectric.co.jp/en/M10009/M20029/document_detail/b2f23970-e560-4961-8013-fc72be43681a

Scores

CVSS v3 7.8

EPSS 0.0026

EPSS Percentile 49.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-502

Status draft

Timeline

Published Sep 03, 2025

Tracked Since Feb 18, 2026