{“lastseen”:”2025-12-04T22:05:11″,”description”:”\\n\\nCisco Talos’ Vulnerability Discovery \\u0026 Research team recently disclosed an out-of-bounds read vulnerability in PDF XChange Editor, and ten vulnerabilities in Socomec DIRIS Digiware M series and Easy Config products.\\n\\nThe vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to _Cisco ‘s third-party vulnerability disclosure policy_.\\n\\nFor Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from _Snort.org_, and our latest Vulnerability Advisories are always posted on _Talos Intelligence ‘s website_.\\n\\n## **PDF XChange vulnerabilities**\\n\\n _Discovered by KPC of Cisco Talos._\\n\\nPDF XChange Editor is freemium software used to create, edit, digitally sign, and otherwise handle PDF files. Talos discovered _TALOS-2025-2280_ (CVE-2025-58113), an out-of-bounds read vulnerability in the EMF functionality of PDF-XChange Co. Ltd PDF-XChange Editor 10.7.3.401. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.\\n\\n## **Socomec vulnerabilities**\\n\\n _Discovered by Kelly Patterson of Cisco Talos._\\n\\nTalos discovered nine vulnerabilities in the Socomec DIRIS Digiware M-70 version 1.6.9. DIRIS Digiware M series are multifunction communication gateways that act as a point of access to Digiware systems, combining power supply and communication control monitoring.\\n\\nOne disclosed vulnerability is also in the Socomec Easy Config System. This software is used to configure and monitor Socomec power monitoring and control equipment.\\n\\n### Socomec DIRIS Digiware M Series\\n\\n _TALOS-2024-2115_ (CVE-2024-48894) is a cleartext transmission vulnerability. Specially crafted HTTP requests can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.\\n\\n_TALOS-2024-2116_ (CVE-2024-53684) is a cross-site request forgery. A specially crafted HTTP request can lead to unauthorized access. An attacker can stage a malicious webpage to trigger this vulnerability.\\n\\n_TALOS-2024-2118_ (CVE-2024-49572) is a denial-of-service vulnerability. A specially crafted network packet can lead to denial of service and weaken credentials, resulting in default documented credentials being applied to the device. An attacker can send an unauthenticated packet to trigger this vulnerability.\\n\\n_TALOS-2024-2119_ (CVE-2024-48882) is a denial-of-service vulnerability. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.\\n\\n_TALOS-2025-2138_ (CVE-2025-20085) is a denial-of-service vulnerability. A specially crafted network packet can lead to denial of service and weaken credentials, resulting in default documented credentials being applied to the device. An attacker can send an unauthenticated packet to trigger this vulnerability.\\n\\n_TALOS-2025-2139_ (CVE-2025-23417) is a denial-of-service vulnerability. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.\\n\\n_TALOS-2025-2248_ (CVE-2025-54848-CVE-2025-54851) is a denial-of-service vulnerability in the Modbus TCP and Modbus RTU over TCP functionalities. A specially crafted series of network requests can lead to a denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.\\n\\n_TALOS-2025-2251_ (CVE-2025-55221-CVE-2025-55222) is a denial-of-service vulnerability in the Modbus TCP and Modbus RTU over TCP USB Function functionalities. A specially crafted network packet can lead to a denial of service. An attacker can send an unauthenticated packet to trigger this vulnerability.\\n\\n_TALOS-2025-2152_ (CVE-2025-26858) is a buffer overflow vulnerability in the Modbus TCP functionality. A specially crafted set of network packets can lead to denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.\\n\\n### Socomec Easy Config System\\n\\n _TALOS-2024-2117_ (CVE-2024-45370) is an authentication bypass vulnerability in the User profile management functionality. A specially crafted database record can lead to unauthorized access. An attacker can modify a local database to trigger this vulnerability.”,”published”:”2025-12-04T20:23:15″,”modified”:”2025-12-04T20:23:15″,”type”:”talosblog”,”title”:”Socomec DIRIS Digiware M series and Easy Config, PDF XChange Editor vulnerabilities”,”source”:””,”references”:””,”id”:”TALOSBLOG:A3A99842EE393A518934D890D76BAC87″,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[“CVE-2024-45370″,”CVE-2024-48882″,”CVE-2024-48894″,”CVE-2024-49572″,”CVE-2024-53684″,”CVE-2025-20085″,”CVE-2025-23417″,”CVE-2025-26858″,”CVE-2025-54848″,”CVE-2025-54851″,”CVE-2025-55221″,”CVE-2025-55222″,”CVE-2025-58113″],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:8.6,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:C\/C:N\/I:N\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/blog.talosintelligence.com\/socomec-diris-digiware-m-series-and-easy-config-pdf-xchange-editor-vulnerabilities\/”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2025-12-04T22:05:11″,”description”:”\\n\\nCisco Talos’ Vulnerability Discovery \\u0026 Research team recently disclosed an out-of-bounds read vulnerability in…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[6,8,81,12,15,13,7,69,11,5],"class_list":["post-28666","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-cve","tag-cvss","tag-cvss-86","tag-exploit","tag-high","tag-news","tag-security","tag-talosblog","tag-tapic","tag-vulnerability"],"yoast_head":"\n