CVE-2025-54811
CVE-2025-54811 is a high-severity vulnerability with a CVSS 3.x base score of 7.1. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-758.
Key facts
- Severity: High (CVSS 3.x base score 7.1)
- CVSS v4: 6.1
- EPSS exploit prediction: 0% (10th percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-32687
- Weakness: CWE-758
- Published:
- Last modified:
Description
OpenPLC_V3 has a vulnerability in the enipThread function that occurs due to the lack of a return value. This leads to a crash when the server loop ends and execution hits an illegal ud2 instruction. This issue can be triggered remotely without authentication by starting the same server multiple times or if the server exits unexpectedly. The vulnerability allows an attacker to cause a Denial of Service (DoS) against the PLC runtime, stopping any PC started remotely without authentication. This results in the PLC process crashing and halting all automation or control logic managed by OpenPLC.
Frequently asked questions
- What is CVE-2025-54811?
- OpenPLC_V3 has a vulnerability in the enipThread function that occurs due to the lack of a return value. This leads to a crash when the server loop ends and execution hits an illegal ud2 instruction. This issue can be triggered remotely without authentication by starting the same server multiple times or if the server exits unexpectedly. The vulnerability allows an attacker to cause a Denial of Service (DoS) against the PLC runtime, stopping any PC started remotely without authentication. This results in the PLC process crashing and halting all automation or control logic managed by OpenPLC.
- How severe is CVE-2025-54811?
- CVE-2025-54811 has a CVSS 3.x base score of 7.1, rated high severity. It is exploitable over local access with low attack complexity, requires no privileges and no user interaction. Impact on confidentiality is none, integrity none, and availability high.
- Is CVE-2025-54811 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (10th percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2025-54811?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- Does CVE-2025-54811 have an EU (EUVD) identifier?
- Yes. CVE-2025-54811 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-32687.
- When was CVE-2025-54811 published?
- CVE-2025-54811 was published on 2025-10-01 and last updated on 2026-06-17.
References
- https://github.com/thiagoralves/OpenPLC_v3
- https://www.cisa.gov/news-events/ics-advisories/icsa-25-273-05
Other CWE-758 vulnerabilities
- CVE-2026-4705 — Critical (CVSS 9.8): Undefined behavior in the WebRTC: Signaling component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9,…
- CVE-2026-4724 — Critical (CVSS 9.1): Undefined behavior in the Audio/Video component. This vulnerability was fixed in Firefox 149 and Thunderbird 149.
- CVE-2026-4718 — High (CVSS 8.1): Undefined behavior in the WebRTC: Signaling component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9,…
- CVE-2024-4774 — Medium (CVSS 6.5): The `ShmemCharMapHashEntry()` code was susceptible to potentially undefined behavior by bypassing the move semantics…
- CVE-2026-34549 — Medium (CVSS 6.2): iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6,…
- CVE-2026-34547 — Medium (CVSS 6.2): iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6,…