HIGH
General Industrial Controls
CVE published 2025-11-13
CVE-2025-59780
CVE-2025-59780 affects General Industrial Controls Lynx+ Gateway. According to CISA’s advisory, the embedded web server lacks critical authentication, allowing unauthenticated GET requests to retrieve sensitive device information. The advisory was published on 2025-11-13 and assigns CVSS 3.1 7.5 (HIGH), reflecting a network-reachable confidentiality issue with no privileges or user interaction required.