CVE-2025-41742

Sprecher Automation: SPRECON-E series has a critical vulnerability due to the use of static cryptographic keys in system components

Description

Sprecher Automations SPRECON-E-C, SPRECON-E-P, SPRECON-E-T3 is vulnerable to attack by an unauthorized remote attacker via default cryptographic keys. The use of these keys allows the attacker to read, modify, and write projects and data, or to access any device via remote maintenance.

INFO

Published Date :

2025-12-02T10:39:08.982Z

Last Modified :

2025-12-02T16:54:31.534Z

Source :

CERTVDE

AFFECTED PRODUCTS

The following products are affected by CVE-2025-41742 vulnerability.

Vendors	Products
Sprecher-automation	Sprecon-e-c Sprecon-e-c Firmware Sprecon-e-p Sprecon-e-p Firmware Sprecon-e-t3 Sprecon-e-t3 Firmware

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-41742.

URL	Resource
https://www.sprecher-automation.com/fileadmin/itSecurity/PDF/SPR-2511042_de.pdf

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact