CVE-2025-41692

Q: What is the severity of CVE-2025-41692?

CVE-2025-41692 has a CVSS score of 6.8 (MEDIUM). This vulnerability allows a high-privileged remote attacker with webUI admin access to brute-force the underlying OS root and user passwords due to weak password generation. Affected systems are those running vulnerable versions of the software with webUI admin access enabled.

6.8 MEDIUM

Authentication Bypass

📋 TL;DR

This vulnerability allows a high-privileged remote attacker with webUI admin access to brute-force the underlying OS root and user passwords due to weak password generation. Affected systems are those running vulnerable versions of the software with webUI admin access enabled.

💻 Affected Systems

Products:

Unknown - product information not provided in CVE description

Versions: Unknown - version information not provided in CVE description

Operating Systems: Unknown - OS information not provided in CVE description

Default Config Vulnerable: ⚠️ Yes

Notes: Requires webUI admin access to exploit. The specific product and versions are not detailed in the provided CVE information.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attacker gains full root access to the underlying operating system, enabling complete system compromise, data theft, and persistent backdoor installation.

🟠

Likely Case

Attacker escalates from webUI admin to OS root privileges, gaining control over the entire system and potentially pivoting to other network resources.

🟢

If Mitigated

With proper network segmentation and access controls, impact is limited to the affected system only.

🌐 Internet-Facing: HIGH

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires existing admin access to the webUI. The weak password generation algorithm enables brute-force attacks against OS credentials.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://certvde.com/de/advisories/VDE-2025-071

Restart Required: No

Instructions:

Check the vendor advisory for specific patching instructions. Apply any available security updates from the vendor.

🔧 Temporary Workarounds

Implement Strong Password Policies

linux

Manually change root and user passwords to strong, complex passwords that are resistant to brute-force attacks.

passwd root
passwd [username]

Restrict WebUI Access

linux

Limit webUI admin access to trusted IP addresses only using firewall rules or access control lists.

iptables -A INPUT -p tcp --dport [webui_port] -s [trusted_ip] -j ACCEPT
iptables -A INPUT -p tcp --dport [webui_port] -j DROP

🧯 If You Can't Patch

Implement network segmentation to isolate affected systems from critical resources
Enable multi-factor authentication for webUI admin access if supported

🔍 How to Verify

Check if Vulnerable:

Check if you have webUI admin access enabled and review password generation mechanisms in system documentation.

Check Version:

Check system documentation or vendor resources for version information specific to this vulnerability.

Verify Fix Applied:

Verify that strong passwords are set for root and user accounts, and test that brute-force attempts are blocked or rate-limited.

📡 Detection & Monitoring

Log Indicators:

Multiple failed authentication attempts for root or user accounts
Unusual login patterns from webUI admin accounts

Network Indicators:

High volume of authentication requests to webUI endpoints
Traffic patterns consistent with brute-force tools

SIEM Query:

source="webui_logs" AND (event_type="authentication_failure" AND user IN ("root", "user") AND count > 10 within 5m)

📊 Metadata

CVE ID: CVE-2025-41692

CVSS v3 Score: 6.8 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

CWE: CWE-916

EPSS Score: 0.02% exploit probability (5.4th percentile)

Published: December 9, 2025

Last Updated: December 19, 2025

🔗 References

https://certvde.com/de/advisories/VDE-2025-071 Third Party Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Fl Nat 2008 Firmware by Phoenixcontact

Fl Nat 2208 Firmware by Phoenixcontact

Fl Nat 2304 2gc 2sfp Firmware by Phoenixcontact

Fl Switch 2005 Firmware by Phoenixcontact

Fl Switch 2008 Firmware by Phoenixcontact

Fl Switch 2008f Firmware by Phoenixcontact

Fl Switch 2016 Firmware by Phoenixcontact

Fl Switch 2105 Firmware by Phoenixcontact

Fl Switch 2108 Firmware by Phoenixcontact

Fl Switch 2116 Firmware by Phoenixcontact

Fl Switch 2204 2tc 2sfx Firmware by Phoenixcontact

Fl Switch 2205 Firmware by Phoenixcontact

Fl Switch 2206 2fx Firmware by Phoenixcontact

Fl Switch 2206 2fx Sm Firmware by Phoenixcontact

Fl Switch 2206 2fx Sm St Firmware by Phoenixcontact

Fl Switch 2206 2fx St Firmware by Phoenixcontact

Fl Switch 2206 2sfx Firmware by Phoenixcontact

Fl Switch 2206 2sfx Pn Firmware by Phoenixcontact

Fl Switch 2206c 2fx Firmware by Phoenixcontact

Fl Switch 2207 Fx Firmware by Phoenixcontact

Fl Switch 2207 Fx Sm Firmware by Phoenixcontact

Fl Switch 2208 Firmware by Phoenixcontact

Fl Switch 2208 Pn Firmware by Phoenixcontact

Fl Switch 2208c Firmware by Phoenixcontact

Fl Switch 2212 2tc 2sfx Firmware by Phoenixcontact

Fl Switch 2214 2fx Firmware by Phoenixcontact

Fl Switch 2214 2fx Sm Firmware by Phoenixcontact

Fl Switch 2214 2sfx Firmware by Phoenixcontact

Fl Switch 2214 2sfx Pn Firmware by Phoenixcontact

Fl Switch 2216 Firmware by Phoenixcontact

Fl Switch 2216 Pn Firmware by Phoenixcontact

Fl Switch 2303 8sp1 by Phoenixcontact

Fl Switch 2304 2gc 2sfp Firmware by Phoenixcontact

Fl Switch 2306 2sfp Firmware by Phoenixcontact

Fl Switch 2306 2sfp Pn Firmware by Phoenixcontact

Fl Switch 2308 Firmware by Phoenixcontact

Fl Switch 2308 Pn Firmware by Phoenixcontact

Fl Switch 2312 2gc 2sfp Firmware by Phoenixcontact

Fl Switch 2314 2sfp Firmware by Phoenixcontact

Fl Switch 2314 2sfp Pn Firmware by Phoenixcontact

Fl Switch 2316 Firmware by Phoenixcontact

Fl Switch 2316 Pn Firmware by Phoenixcontact

Fl Switch 2316\/k1 Firmware by Phoenixcontact

Fl Switch 2404 2tc 2sfx Firmware by Phoenixcontact

Fl Switch 2406 2sfx Firmware by Phoenixcontact

Fl Switch 2406 2sfx Pn Firmware by Phoenixcontact

Fl Switch 2408 Firmware by Phoenixcontact

Fl Switch 2408 Pn Firmware by Phoenixcontact

Fl Switch 2412 2tc 2sfx Firmware by Phoenixcontact

Fl Switch 2414 2sfx Firmware by Phoenixcontact

Fl Switch 2414 2sfx Pn Firmware by Phoenixcontact

Fl Switch 2416 Firmware by Phoenixcontact

Fl Switch 2416 Pn Firmware by Phoenixcontact

Fl Switch 2504 2gc 2sfp Firmware by Phoenixcontact

Fl Switch 2506 2sfp Firmware by Phoenixcontact

Fl Switch 2506 2sfp Pn Firmware by Phoenixcontact

Fl Switch 2506 2sfp\/k1 Firmware by Phoenixcontact

Fl Switch 2508 Firmware by Phoenixcontact

Fl Switch 2508 Pn Firmware by Phoenixcontact

Fl Switch 2508\/k1 Firmware by Phoenixcontact

Fl Switch 2512 2gc 2sfp Firmware by Phoenixcontact

Fl Switch 2514 2sfp Firmware by Phoenixcontact

Fl Switch 2514 2sfp Pn Firmware by Phoenixcontact

Fl Switch 2516 Firmware by Phoenixcontact

Fl Switch 2516 Pn Firmware by Phoenixcontact

Fl Switch 2608 Firmware by Phoenixcontact

Fl Switch 2608 Pn Firmware by Phoenixcontact

Fl Switch 2708 Firmware by Phoenixcontact

Fl Switch 2708 Pn Firmware by Phoenixcontact