A divide-by-zero vulnerability in the Productivity Suite allows a local
attacker to cause a division by zero leading to a system crash.

Project Subscriptions

Vendors Products
Automationdirect Subscribe
Productivity Suite Subscribe
Advisories

No advisories yet.

Fixes

Solution

AutomationDirect recommends that users update Productivity suite to v4.7.0.47 and above  https://www.automationdirect.com/support/software-downloads


Workaround

If the update cannot be applied right away, the following compensating controls are recommended until the upgrade can be performed. * Disconnect the engineering workstation from external networks (e.g., the internet or corporate LAN) to reduce exposure. * Use only trusted, dedicated internal networks or air-gapped systems for device communication. * Restrict both physical and logical access to authorized personnel only. * Configure whitelisting so that only trusted, pre-approved applications are allowed to run. Block any unauthorized software. * Use antivirus or EDR tools and configure host-based firewalls to block unauthorized access attempts. * Enable and regularly review system logs to detect suspicious or unauthorized activity. * Maintain secure, tested backups of the PLC and its configurations to minimize downtime in case of an incident. * Continuously evaluate risks associated with running outdated firmware and adjust compensating measures accordingly.

History

Fri, 17 Jul 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 16 Jul 2026 23:00:00 +0000

Type Values Removed Values Added
First Time appeared Automationdirect
Automationdirect productivity Suite
Vendors & Products Automationdirect
Automationdirect productivity Suite

Thu, 16 Jul 2026 21:00:00 +0000

Type Values Removed Values Added
Description A divide-by-zero vulnerability in the Productivity Suite allows a local attacker to cause a division by zero leading to a system crash.
Title AutomationDirect Productivity Suite Divide By Zero
Weaknesses CWE-369
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

cvssV4_0

{'score': 6.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}


Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published:

Updated: 2026-07-17T13:22:08.813Z

Reserved: 2026-07-09T15:00:24.544Z

Link: CVE-2026-61378

cve-icon Vulnrichment

Updated: 2026-07-17T13:21:55.112Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-16T22:45:06Z

Weaknesses