CVE-2025-41744 – Sprecher Automation: SPRECON-E series has static default key material for TLS connections

CVE ID : CVE-2025-41744

Published : Dec. 2, 2025, 11:15 a.m. | 1 hour, 10 minutes ago

Description : Sprecher Automations SPRECON-E series uses default cryptographic keys that allow an unprivileged remote attacker to access all encrypted communications, thereby compromising confidentiality and integrity.

Severity: 9.1 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-13090 – WP Directory Kit

CVE-2025-41743 – Sprecher Automation: SPRECON-E series prone to weak encryption of update files

CVE-2025-41742 – Sprecher Automation: SPRECON-E series has a critical vulnerability due to the use of static cryptographic keys in system components

CVE-2025-13353 – gokey allows secret recovery from a seed file without the master password