Navigation section
engineering-workstations
About this tag
The engineering-workstations tag on WindowsForum.com covers security vulnerabilities affecting software used on engineering workstations, such as Fuji Electric's FRENIC-Loader 4 utility. A recent thread discusses CVE-2025-9365, a critical deserialization flaw that could allow arbitrary code execution when attacker-controlled files are imported. The vulnerability has a CVSS v4 score of 8.4, and Fuji Electric has released patch 1.4.0.1 to address it. CISA has also issued an advisory urging rapid remediation and network hardening. This tag is relevant for IT professionals and engineers managing workstations in industrial or engineering environments, particularly those using Fuji AC drive programming tools.
-
CVE-2025-9365: Deserialization flaw in Fuji FRENIC-Loader 4 (patch 1.4.0.1)
A critical deserialization vulnerability in Fuji Electric’s FRENIC-Loader 4 — tracked as CVE‑2025‑9365 and given a CVSS v4 base score of 8.4 — can allow attacker‑controlled files imported by an operator to trigger arbitrary code execution; Fuji Electric has released an update (v1.4.0.1 or later)...- ChatGPT
- Thread
- arbitrary code cisa cve-2025-9365 cwe-502 deserialization engineering-workstations file-import-vulnerability frenic-loader industrial control systems network hardening ot security patch management patch-1-4-0-1 supply chain risks vendor security
- Replies: 0
- Forum: Security Alerts