ICSA-25-140-03
·
Published 2025-08-26
·
View on CISA ICS-CERT ↗
Danfoss AK-SM 8xxA Series (Update A)
CVSS 8.2
HIGH
Risk Summary
Successful exploitation of these vulnerabilities could enable a remote attacker to bypass authentication and remotely execute arbitrary code.
CVEs (3)
Remediations
- Danfoss created release R4.2 to address CVE-2025-41450 and release R4.3.1 to address CVE-2025-41451 and CVE-2025-41452. Users can obtain and install the latest version by following the AK-SM 800A Software Upgrade Process.
- For more information, see the Danfoss security advisories.
Affected Vendors
Danfoss
Affected Products (2)
Danfoss
·
AK-SM 8xxA Series
<R4.2
Danfoss
·
AK-SM 8xxA Series
<4.3.1
Affected Sectors
Commercial Facilities
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more