Festo MSE6 industrial devices contain a vulnerability in an undocumented, publicly accessible test mode. A remote authenticated low-privilege attacker can abuse test mode functions to compromise the device. Successful exploitation results in full loss of confidentiality, integrity, and availability.
Remediation
Install the latest official firmware update from Festo that remediates improper access to test mode functions. Enforce least-privilege access controls for user accounts on affected industrial devices. Restrict remote access to MSE6 devices to only authorized internal networks.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.