CVE-2025-58083
Published: 15 November 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2025-58083 is a critical authentication bypass vulnerability (CWE-306) in the embedded web server of the General Industrial Controls Lynx+ Gateway. Published on 2025-11-15, it carries a CVSS v3.1 base score of 10.0 (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H), stemming from the absence of required authentication mechanisms that could enable unauthorized remote device reset.
An unauthenticated attacker with network access to the affected gateway can exploit this vulnerability with low complexity and no user interaction. Exploitation allows remote reset of the device, resulting in high impacts to confidentiality, integrity, and availability, particularly in operational technology environments where device downtime could disrupt industrial controls.
The CISA ICS advisory ICSA-25-317-08 details mitigation recommendations. Security practitioners should consult https://www.cisa.gov/news-events/ics-advisories/icsa-25-317-08 and the associated CSAF document at https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-317-08.json for patch information and remediation guidance.
Details
- CWE(s)
MITRE ATT&CK Enterprise Techniques
Why these techniques?
The vulnerability is an authentication bypass in an embedded web server, directly enabling exploitation of a public-facing application to remotely reset the device.