Beckhoff TwinCAT 3 Engineering Deserialization Vulnerability (CVE-2025-41701)

## Critical Vulnerability Information ### Vulnerability ID - VDE-2025-075 ### Release Date - 2025-09-10 10:00 (CEST) ### Last Updated - 2025-09-10 10:36 (CEST) ### Vendor - Beckhoff Automation GmbH & Co. KG ### Affected Products and Versions - TE1000 | TwinCAT 3 Engineering < 3.1.4024.67 ### Vulnerability Overview Beckhoff's TwinCAT 3 Engineering software is used to create automation projects, which consist of file sets stored in local folders or packaged files. TwinCAT 3 Engineering stores user settings and preferences in unpacked local files, which are associated with continuing previous work and are referred to as "Solution User Options (suo) files." When these settings are manipulated or crafted in a specific way, TwinCAT 3 Engineering executes arbitrary commands based on these settings. These commands are executed in the user context when a user opens a project using TwinCAT 3 Engineering. ### CVE ID - CVE-2025-41701 ### Last Update Time - 10:34 AM, September 8, 2025 ### Severity - 7.0 (CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) ### Weakness - Deserialization of Untrusted Data (CWE-502) ### Summary An unauthenticated attacker can trick a local user into executing arbitrary commands by opening a maliciously crafted project file using the affected engineering tool. These arbitrary commands execute in the user's context. ### Impact An attacker with access to local files can trick a local user into executing arbitrary commands by opening a maliciously crafted project file using the affected engineering tool. These commands execute in the user's context. If an older version of the engineering tool is installed, malicious manipulation of the project file may cause the tool to open it. ### Solution Update to the latest version of the affected product and uninstall older versions of TwinCAT 3 Engineering. Ensure that older versions of TwinCAT 3 Engineering are not present as "Remote Manager" versions. Remove any "pinning" of TwinCAT 3 Engineering in your projects, if applicable. ### Reporter CERT@VDE coordinating with Beckhoff

Goal Reached Thanks to every supporter — we hit 100%!

Beckhoff TwinCAT 3 Engineering Deserialization Vulnerability (CVE-2025-41701)

More from this source