{“lastseen”:””,”description”:”The secret used for validating authentication tokens is hardcoded in \\ndevice firmware for affected versions. An attacker who obtains the \\nsigning key can bypass authentication, gaining complete access to the \\nsystem.”,”published”:”2025-09-18T20:44:04.094Z”,”modified”:”2025-09-18T20:44:04.094Z”,”type”:”cve”,”title”:”Dover Fueling Solutions ProGauge MagLink LX4 Devices Use of Hard-coded Cryptographic Key”,”source”:”icscert”,”references”:”https:\/\/www.cisa.gov\/news-events\/ics-advisories\/icsa-25-261-07\\nhttps:\/\/www.doverfuelingsolutions.com\/mea\/en\/products-and-solutions\/automatic-tank-gauging\/consoles\/progauge-maglink-lx-4-console.html”,”id”:”CVE-2025-54807″,”bulletinFamily”:””,”cwe”:[“CWE-321″],”cvelist”:null,”sourceData”:”Dover Fueling Solutions ProGauge MagLink LX 4 0\\nDover Fueling Solutions ProGauge MagLink LX Plus 0\\nDover Fueling Solutions ProGauge MagLink LX Ultimate 0″,”sourceHref”:””,”cvss”:{“score”:9.8,”severity”:”CRITICAL”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”ProGauge MagLink LX 4″,”version”:”0″,”vendor”:”Dover Fueling Solutions”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”The secret used for validating authentication tokens is hardcoded in \\ndevice firmware for affected versions. An attacker who obtains the \\nsigning key can bypass authentication,…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[9,6,8,35,12,13,7,11,5],"class_list":["post-18051","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-critical","tag-cve","tag-cvss","tag-cvss-98","tag-exploit","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n