Vulnerability Details CVE-2025-52543
E3 Site Supervisor Control (firmware version < 2.31F01) application services (MGW and RCI) uses client side hashing for authentication. An attacker can authenticate by obtaining only the password hash.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 20.1%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2025-52543
-
cpe:2.3:h:copeland:site_supervisor_bx_860-1240:-
-
cpe:2.3:h:copeland:site_supervisor_bxe_860-1245:-
-
cpe:2.3:h:copeland:site_supervisor_cx_860-1260:-
-
cpe:2.3:h:copeland:site_supervisor_cxe_860-1265:-
-
cpe:2.3:h:copeland:site_supervisor_rx_860-1220:-
-
cpe:2.3:h:copeland:site_supervisor_rxe_860-1225:-
-
cpe:2.3:h:copeland:site_supervisor_sf_860-1200:-
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.02f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.04f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.05f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.07f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.08f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.10f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.11f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.17f02
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.19f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.20f03
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.23f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.28f02
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.29f02
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.30f01
-
cpe:2.3:o:copeland:e3_supervisory_controller_firmware:2.30f02