Vulnerability Description
A vulnerability in the web interface of the Güralp Fortimus Series, Minimus Series and Certimus Series allows an unauthenticated attacker with network access to send specially-crafted HTTP requests that can cause the web service process to deliberately restart. Although this mechanism limits the impact of the attack, it results in a brief denial-of-service condition during the restart.
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-35
- https://www.cisa.gov/news-events/ics-advisories/icsa-25-350-01
FAQ
What is CVE-2025-14466?
CVE-2025-14466 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A vulnerability in the web interface of the Güralp Fortimus Series, Minimus Series and Certimus Series allows an unauthenticated attacker with network access to send specially-crafted HTTP requests th...
How severe is CVE-2025-14466?
CVE-2025-14466 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-14466?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.