ICSA-25-175-05 · Published 2025-06-24 · View on CISA ICS-CERT ↗

ControlID iDSecure On-premises

CVSS 9.1 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication, retrieve information, leak arbitrary data, or perform SQL injections.

CVEs (3)

CVE-2025-49851 CVE-2025-49852 CVE-2025-49853

Remediations

ControlID has released the following versions for users to update:
iDSecure On-premises: Version 4.7.50.0
For more information, contact ControlID.

Affected Vendors

ControlID

Affected Products (1)

ControlID · iDSecure On-premises <=4.7.48.0

Affected Sectors

Commercial Facilities

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more