CVE-2025-24317

Summary

CVE-2025-24317 is a recently identified vulnerability affecting the HMI ViewJet C-more series and HMI GC-A2 series. This issue stems from insufficient resource management, allowing a remote, unauthenticated attacker to cause a denial-of-service (DoS) condition by exhausting resources. The precise nature of the resource exhaustion is not explicitly stated, but it is noted that no limits or throttling mechanisms are in place to mitigate the risk. This vulnerability poses a significant threat, as it can be exploited without requiring any form of authentication. Organizations utilizing these HMI systems are urged to apply relevant patches or workarounds to safeguard against potential DoS attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.