CVE-2025-41742CRITICAL 9.8EPSS p24.3%

CVE-2025-41742CVE-2025-41742

Description

Sprecher Automations SPRECON-E-C,  SPRECON-E-P, SPRECON-E-T3 is vulnerable to attack by an unauthorized remote attacker via default cryptographic keys. The use of these keys allows the attacker to read, modify, and write projects and data, or to access any device via remote maintenance.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.33% probability of exploitation · percentile 24.3% · 2026-06-18T12:00:27Z
Published2025-12-02
Last modified2026-02-23

Underlying weaknesses· 1

CWE-1394

References

  1. https://www.sprecher-automation.com/fileadmin/itSecurity/PDF/SPR-2511042_de.pdf

1

TypeTargetConfidenceTier
WeaknessUse of Default Cryptographic Keycwe-13940%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-41744
CVE
CVE-2025-40771
CVE
CVE-2025-41709
CVE
CVE-2025-41450
CVE
CVE-2025-41659
CVE
CVE-2025-57431
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.