CVE-2025-9178

high

Description

A denial-of-service security issue exists in the affected product and version. The security issue is caused through CIP communication using crafted payloads. The security issue could result in no CIP communication with 1715 EtherNet/IP Adapter.A restart is required to recover.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-287-01

https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1757.html

Details

Source: Mitre, NVD

Published: 2025-10-14

Updated: 2025-10-14

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

CVSS v4

Base Score: 7.7

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:H

Severity: High

EPSS

EPSS: 0.00042