{“lastseen”:””,”description”:”A binding to an unrestricted IP address vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read, write, or delete arbitrary files and folders on the target machine”,”published”:”2025-10-23T22:01:28.290Z”,”modified”:”2025-10-23T22:01:28.290Z”,”type”:”cve”,”title”:”AutomationDirect Productivity Suite Binding to an Unrestricted IP Address CWE-1327″,”source”:”icscert”,”references”:”https:\/\/www.cisa.gov\/news-events\/ics-advisories\/icsa-25-296-01\\nhttps:\/\/www.automationdirect.com\/support\/software-downloads\\nhttps:\/\/support.automationdirect.com\/docs\/securityconsiderations.pdf\\nhttps:\/\/github.com\/cisagov\/CSAF\/blob\/develop\/csaf_files\/OT\/white\/2025\/icsa-25-296-01.json”,”id”:”CVE-2025-61934″,”bulletinFamily”:””,”cwe”:[“CWE-1327″],”cvelist”:null,”sourceData”:”AutomationDirect Productivity Suite 0\\nAutomationDirect Productivity 3000 P3-622 CPU 0\\nAutomationDirect Productivity 3000 P3-550E CPU 0\\nAutomationDirect Productivity 3000 P3-530 CPU 0\\nAutomationDirect Productivity 2000 P2-622 CPU 0\\nAutomationDirect Productivity 2000 P2-550 CPU 0\\nAutomationDirect Productivity 1000 P1-550 CPU 0\\nAutomationDirect Productivity 1000 P1-540 CPU 0″,”sourceHref”:””,”cvss”:{“score”:9.3,”severity”:”CRITICAL”,”vector”:”CVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:N\/UI:N\/VC:H\/VI:H\/VA:H\/SC:L\/SI:L\/SA:L”,”version”:”4.0″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Productivity Suite”,”version”:”v4.4.1.19″,”vendor”:”AutomationDirect”,”ai_description”:”A binding to an unrestricted IP address vulnerability in Productivity Suite allows remote attackers to interact with the ProductivityService PLC simulator and access files and folders on the target machine”,”ai_severity”:”CRITICAL”,”ai_vendor”:”AutomationDirect”,”ai_product”:”Productivity Suite”,”ai_version”:”v4.4.1.19″,”ai_score”:9.3}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”A binding to an unrestricted IP address vulnerability was discovered in Productivity Suite software version v4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[9,6,8,55,12,13,7,11,5],"class_list":["post-22943","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-critical","tag-cve","tag-cvss","tag-cvss-93","tag-exploit","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n