CVE-2025-41647

Name of the Vulnerable Software and Affected Versions: PLC Designer V4

Description: A local, low-privileged attacker can learn the password of the connected controller due to an incorrect implementation that results in the password being displayed in plain text under special conditions.

Recommendations: For PLC Designer V4, consider restricting access to the controller until a fix is available, and avoid using the software under conditions where the password may be exposed. As a temporary workaround, limit the use of PLC Designer V4 to trusted, high-privileged users only.