CVE-2025-27615

Summary

CVE-2025-27615 is a vulnerability affecting the umatiGateway software, which connects OPC Unified Architecture servers with an MQTT broker using JSON messages. The issue arises due to the user interface potentially being publicly accessible through the provided docker-compose file. This exposure allows unauthorized users to view and modify the configuration. Although a patch is available with a suggested IP address limitation (127.0.0.1:8080:8080), users unable to apply the patch can employ a firewall to block Port 8080 as a workaround. However, this may not be foolproof as Docker could bypass firewalls via iptable rules for port forwarding.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.