These vulnerabilities in Columbia Weather Systems MicroServer could allow attackers to hijack connections, gain administrative access, or execute limited shell commands. Security experts recommend remote access restrictions and network segmentation to mitigate these risks. #CVE2025-61939 #CVE2025-64305 #CVE2025-66620 #ColumbiaWeatherSystemsMicroServer
Keypoints
- The vulnerabilities affect Columbia Weather Systems MicroServer firmware versions earlier than MS_4.1_14142.
- An attacker on the local network with administrative privileges can exploit these flaws to access sensitive data and control mechanisms.
- CISA recommends minimizing network exposure and using secure remote access methods like VPNs to prevent exploitation.
- Exploits include reverse SSH connections, unencrypted firmware data storage, and webshells with unlimited login attempts.
- There have been no publicly reported cases of these vulnerabilities being actively exploited yet.
Read More: https://www.cisa.gov/news-events/ics-advisories/icsa-26-006-01