CVE-2025-1727 | THREATINT

Description

The protocol used for remote linking over RF for End-of-Train and Head-of-Train (also known as a FRED) relies on a BCH checksum for packet creation. It is possible to create these EoT and HoT packets with a software defined radio and issue brake control commands to the EoT device, disrupting operations or potentially overwhelming the brake systems.

PUBLISHED Reserved 2025-02-26 | Published 2025-07-10 | Updated 2025-07-11 | Assigner icscert

HIGH: 8.1CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

HIGH: 7.2CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-1390

Product status

Default status

unaffected

All versions

affected

Credits

Neil Smith and Eric Reuter reported this vulnerability to CISA. finder

References

www.cisa.gov/news-events/ics-advisories/icsa-25-191-10

cve.org (CVE-2025-1727)

nvd.nist.gov (CVE-2025-1727)

Download JSON