ValveLink
by Emerson
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-52579 | Cri | 0.61 | 9.4 | 0.00 | Jul 11, 2025 | Emerson ValveLink Products store sensitive information in cleartext in memory. The sensitive memory might be saved to disk, stored in a core dump, or remain uncleared if the product crashes, or if the programmer does not properly clear the memory before freeing it. | ||
| CVE-2025-50109 | Hig | 0.50 | 7.7 | 0.00 | Jul 11, 2025 | Emerson ValveLink Products store sensitive information in cleartext within a resource that might be accessible to another control sphere. | ||
| CVE-2025-46358 | Hig | 0.50 | 7.7 | 0.00 | Jul 11, 2025 | Emerson ValveLink products do not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product. | ||
| CVE-2025-48496 | Med | 0.33 | 5.1 | 0.00 | Jul 11, 2025 | Emerson ValveLink products use a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors. |
- risk 0.61cvss 9.4epss 0.00
Emerson ValveLink Products store sensitive information in cleartext in memory. The sensitive memory might be saved to disk, stored in a core dump, or remain uncleared if the product crashes, or if the programmer does not properly clear the memory before freeing it.
- risk 0.50cvss 7.7epss 0.00
Emerson ValveLink Products store sensitive information in cleartext within a resource that might be accessible to another control sphere.
- risk 0.50cvss 7.7epss 0.00
Emerson ValveLink products do not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.
- risk 0.33cvss 5.1epss 0.00
Emerson ValveLink products use a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.