CVE-2025-55034 HIGH

CVE-2025-55034: General Industrial Controls Lynx+ Gateway Weak Password Requirements

Vendor General Industrial Controls
Product Lynx+ Gateway
Weakness CWE-521
Published November 14, 2025
Last update November 17, 2025

CVSS base score

8.2/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

What the vulnerability does

01Description

General Industrial Controls Lynx+ Gateway is vulnerable to a weak password requirement vulnerability, which may allow an attacker to execute a brute-force attack resulting in unauthorized access and login.

Key dates

02Disclosure timeline

November 14, 2025 CVE published
November 17, 2025 Record updated