Medium severity6.3NVD Advisory· Published Mar 12, 2026· Updated Jun 5, 2026
CVE-2025-13913
CVE-2025-13913
Description
A privileged Ignition user, intentionally or otherwise, imports an external file with a specially crafted payload, which executes embedded malicious code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:inductiveautomation:ignition:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:inductiveautomation:ignition:*:*:*:*:*:*:*:*range: <8.3.0
- (no CPE)
- Inductive Automation/Ignition Softwarev5Range: 0
Patches
Vulnerability mechanics
References
3- www.cisa.gov/news-events/ics-advisories/icsa-26-071-06nvdThird Party AdvisoryVDB Entry
- github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-071-06.jsonnvdIssue Tracking
- inductiveautomation.com/resources/article/ignition-security-hardening-guidenvdIssue Tracking
News mentions
0No linked articles in our index yet.