EoT/HoT Remote Connection Protocol Security Update Advisory (CVE-2025-1727)

Jul 21 2025

Overview

We have released a security update that addresses a vulnerability in the EoT/HoT remote connection protocol. Affected product users are advised to update to the latest version.

Affected Products

CVE-2025-1727

End-of-Train and Head-of-Train remote linking protocol Versions: All Versions

Resolved Vulnerabilities

Command forgery vulnerability due to malicious authentication in End-of-Train and Head-of-Train remote linking protocol (CVE-2025-1727)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-1727

End-of-Train and Head-of-Train remote linking protocol version: Coming Soon

References

[1] End-of-Train and Head-of-Train Remote Linking Protocol
https://www.cisa.gov/news-events/ics-advisories/icsa-25-191-10

EoT/HoT Remote Connection Protocol Security Update Advisory (CVE-2025-1727)

Microsoft Edge browser (138.0.3351.95) version security update advisory

MS Family July 2025 Secondary Security Update Advisory

Tags:

Microsoft Edge browser (138.0.3351.95) version security update advisory

MS Family July 2025 Secondary Security Update Advisory