Weekly Intelligence Brief on Security Alerts and Vulnerabilities - Week of October 27, 2025

Key Takeaways

• CISA added new vulnerabilities to the Known Exploited Vulnerabilities (KEV) Catalog, including CVE-2025-61932 affecting LANSCOPE.
• NIHON KOHDEN's CNS-6201 monitor faces a NULL pointer dereference vulnerability with a Common Vulnerability Scoring System (CVSS) score of 8.7.
• Veeder-Root's TLS4B system has been flagged for multiple vulnerabilities, including command injection.
• CISA warned of CloudEdge App vulnerabilities that allow remote exploitation and unsecure credential usage.
• Siemens has several advisories for RUGGEDCOM Robot Operating System (ROS) devices detailing vulnerabilities and mitigation steps.

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its KEV Catalog, adding CVE-2025-61932 for the Motex LANSCOPE Endpoint Manager. This vulnerability relates to improper verification of communication sources, a common attack vector posing risks to enterprise networks.

NIHON KOHDEN's CNS-6201 central monitor is affected by a NULL pointer dereference vulnerability, identified as CVE-2025-59668, which has a CVSS score of 8.7. This flaw could lead to Denial of Service (DoS) attacks, particularly critical in healthcare environments where these devices are deployed.

Further, multiple vulnerabilities were identified in Veeder-Root's TLS4B Automatic Tank Gauge System, classified with a CVSS score of 9.4. These issues allow for potential unauthorized command execution and system disruption if not addressed.

CISA also issued limitations on updates for Siemens devices, specifically the RUGGEDCOM ROS series. Vulnerabilities include improper handling of cryptographic processes, which could lead to man-in-the-middle attacks or unauthorized access.

For CloudEdge users, vulnerabilities in their app and cameras have been documented, allowing remote exploitation due to hard-coded credentials. CloudEdge has not provided specific remediation updates, leading CISA to urge users to adopt network security measures.

Organizations are advised to prioritize remediation of these and other identified vulnerabilities as part of their security protocols to mitigate risks of exploitation and maintain data integrity.

1. CISA adds two KEV to catalog
   CISA adds CVE-2025-54236 and CVE-2025-59287 to the KEV Catalog to address active threats.
2. NIHON KOHDEN faces vulnerability in CNS-6201
   A NULL pointer dereference vulnerability in the CNS-6201 monitor may allow attackers to disrupt operations in healthcare facilities.
3. Veeder-Root faces security vulnerabilities in TLS4B system
   CISA reports vulnerabilities in Veeder-Root's TLS4B system; users advised to upgrade and follow security best practices.
4. Vulnerability in ASKI Energy ALS-Mini devices
   ASKI Energy's devices ALS-Mini-S8 and ALS-Mini-S4 have a CVSS v4 score of 9.9 for missing authentication vulnerability.
5. AutomationDirect warns of vulnerabilities in Productivity Suite
   AutomationDirect's Productivity Suite has vulnerabilities impacting security; updates and network measures are recommended.
6. CISA issues eight advisories for Industrial Control Systems (ICS) vulnerabilities
   CISA reports eight advisories addressing vulnerabilities in ICS, urging users to review the details.
7. Delta Electronics warns of ASDA-Soft vulnerabilities
   ASDA-Soft versions 7.0.2.0 and earlier may be susceptible to stack-based buffer overflow vulnerabilities, Delta Electronics reports.
8. CISA adds CVE-2025-61932 vulnerability to catalog
   CISA encourages organizations to address vulnerabilities in the KEV Catalog, including a newly added one for LANSCOPE Endpoint Manager.
9. Cloudera partners with Chainguard to enhance security
   Cloudera and Chainguard's collaboration reduces open-source software vulnerabilities by over 90%, enhancing security for enterprise users.
10. Raisecomm RAX701-GC Series faces security vulnerability
    CISA recommends users of Raisecomm RAX701-GC products take steps to mitigate exploitation risk from an authentication bypass vulnerability.
11. CISA issues 10 advisories on ICS vulnerabilities
    CISA advises users to review new guidance on security vulnerabilities in ICS from major manufacturers.
12. CloudEdge App and Cameras have vulnerability
    CISA warns of a serious vulnerability in CloudEdge products that permits remote exploitation due to insecure credentialing.
13. Vulnerabilities Affect Rockwell Automation 1783-NATR
    CISA flags vulnerabilities in Rockwell's 1783-NATR equipment, advising defenses against potential exploitation risks.
14. Rockwell Automation alerts on GuardLogix 5370 vulnerability
    CISA recommends mitigating measures for the vulnerability in Rockwell Automation's Compact GuardLogix 5370 to enhance network security.
15. Vulnerabilities discovered in Oxford Nanopore's MinKNOW software
    MinKNOW software from Oxford Nanopore Technologies shows multiple vulnerabilities, impacting data security and sequencing processes.
16. Siemens alerts on RUGGEDCOM ROS device vulnerabilities
    CISA stops updating advisories on Siemens ICS vulnerabilities after January 10, 2023. Users must refer to Siemens for current info.
17. CISA stops updates on Siemens SIMATIC S7-1200 Central Processing Unit (CPU) vulnerabilities
    CISA will cease updates on Siemens SIMATIC S7-1200 CPU V1/V2 security advisories. Siemens suggests network security measures.