Over 1,000 Instantel Micromate devices used in industrial settings are vulnerable to remote hacking due to a critical flaw that allows command execution. The vulnerability, CVE-2025-1907, could enable attackers to manipulate or disable monitoring functions, impacting safety and operational integrity. #CISA #Instantel #CVE-2025-1907 #IndustrialDevices
Keypoints
- An authentication flaw in Instantel’s Micromate devices is exploited via a configuration port.
- The vulnerability has a high severity score of 9.8 on the CVSS scale.
- Attackers can execute arbitrary commands, potentially disrupting vital monitoring data.
- Over 1,000 devices worldwide are exposed to remote hacking risks.
- Instantel is developing a firmware update while recommending limited device access to trusted IPs.