Vulnerability Description
The TLS4B ATG system is vulnerable to improper handling of Unix time values that exceed the 2038 epoch rollover. When the system clock reaches January 19, 2038, it resets to December 13, 1901, causing authentication failures and disrupting core system functionalities such as login access, history visibility, and leak detection termination. This vulnerability could allow an attacker to manipulate the system time to trigger a denial of service (DoS) condition, leading to administrative lockout, operational timer failures, and corrupted log entries.
CVSS Score
HIGH
Related Weaknesses (CWE)
References
- https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-29
- https://www.cisa.gov/news-events/ics-advisories/icsa-25-296-03
- https://www.veeder.com/us/network-security-reminder
FAQ
What is CVE-2025-55067?
CVE-2025-55067 is a vulnerability with a CVSS score of 7.1 (HIGH). The TLS4B ATG system is vulnerable to improper handling of Unix time values that exceed the 2038 epoch rollover. When the system clock reaches January 19, 2038, it resets to December 13, 1901, causing...
How severe is CVE-2025-55067?
CVE-2025-55067 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-55067?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.