CVE-2025-60038

Name of the Vulnerable Software and Affected Versions Rexroth IndraWorks (affected versions not specified)

Description A flaw exists that allows an attacker to execute arbitrary code on a user’s system by parsing a manipulated file containing malicious serialized data. Exploitation requires user interaction, specifically opening a specially crafted file, which then causes the application to deserialize the malicious data, enabling Remote Code Execution (RCE). This can lead to a complete compromise of the system running the software.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.