Main Vulnerability Database SB2025080835

SB2025080835 - Improper Restriction of Excessive Authentication Attempts in EG4 Electronics EG4 Inverters

Published: August 8, 2025

Security Bulletin ID SB2025080835

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper Restriction of Excessive Authentication Attempts (CVE-ID: CVE-2025-46414)

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the affected product does not limit the number of attempts for inputting the correct PIN for a registered product. A remote attacker can conduct brute force attacks to gain access to the target device.

Remediation

Install update from vendor's website.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-07

SB2025080835 - Improper Restriction of Excessive Authentication Attempts in EG4 Electronics EG4 Inverters

Breakdown by Severity

Description

Remediation

References

Please verify you're human