Advisories | CERT@VDE

2025-08-05 10:00 VDE-2025-028

Draeger: ICMHelper is vulnerable to a privilege escalation

A security vulnerability was identified in the ICMHelper service running on the system of an ICM installation. A low privileged local attacker could exploit this vulnerability to issue OS commands with the highest privileges.

more ...

CVE-2025-41698: 7.8

CVE-2025-2810: 5.5

Feeds

RSS / Atom

By Vendor

ADS-TEC Industrial IT (3)

Auma (6)

Beckhoff (14)

Bender (2)

CODESYS (21)

Draeger (1)

Endress+Hauser (13)

Festo (12)

Festo Didactic (7)

Frauscher (4)

Carlo Gavazzi Controls (1)

Helmholz (16)

HIMA (2)

ifm (4)

Innominate (2)

Lenze (5)

MB connect line (16)

Miele (4)

M&M Software (1)

Pepperl+Fuchs (33)

PHOENIX CONTACT (96)

Pilz (16)

Red Lion Europe (4)

SMA (5)

SWARCO (1)

TECSON/GOK (1)

TRUMPF SE (4)

TRUMPF Laser (8)

TRUMPF Werkzeugmaschinen (9)

VARTA Storage (1)

VMT (1)

WAGO (67)

Weidmueller (15)

Welotec (3)

Wiesemann & Theis (6)

Legend

(Scoring for CVSS 2.0,3.0+3.1)

None

No CVE available

Low

0.1 <= 3.9

Medium

4.0 <= 6.9

High

7.0 <= 8.9

Critical

9.0 <= 10.0

Draeger: ICMHelper is vulnerable to a privilege escalation

Feeds

By Vendor

Archive

2025

2024

2023

2022

2021

2020

2019

2018

2017

Legend