Latest AutomationDirect MB-GATEWAY vulnerability #

A vulnerability has been disclosed in AutomationDirect MB-GATEWAY Modbus gateways. This vulnerability in the embedded web server allows unrestricted remote access to the device. This device is no longer supported by the vendor and will not receive updates, including security patches.

This vulnerability has been designated CVE-2025-36535 and has a CVSS score of 10.0 (critical).

What is the impact? #

Successful exploitation of this vulnerability could lead to configuration changes, operational disruption, or arbitrary code execution depending on the environment and exposed functionality.

Are any updates or workarounds available? #

This device is no longer supported by the vendor and users are encouraged to discontinue their use. If this is not possible, users are strongly recommended to implement network access controls to limit access to these devices to trusted networks.

How do I find AutomationDirect MB-GATEWAY Modbus gateways with runZero? #

From the Asset Inventory, use the following query to locate potentially impacted assets:

hw:="Automation Direct Modbus Gateway"

Written by Matthew Kienow

Matthew Kienow is a software engineer and security researcher. Matthew previously worked on the Recog recognition framework, AttackerKB as well as Metasploit's MSF 5 APIs. He has also designed, built, and successfully deployed many secure software solutions; however, often he enjoys breaking them instead. He has presented his research at various security conferences including DerbyCon, Hack In Paris, and CarolinaCon. His research has been cited by CSO, Threatpost and SC Magazine.

More about Matthew Kienow
Subscribe Now

Get the latest news and expert insights delivered in your inbox.

Welcome to the club! Your subscription to our newsletter is successful.

Explore more runZero

Product
Announcing runZero 5.0: Exposure management built to outpace AI-driven attacks
When you're up against AI, every minute counts. Get deep, actionable intelligence across your entire attack surface to close the gaps and hold the...
Product Videos
runZero 5.0: Platform Demo
With the new 5.0 release, runZero is giving defenders the edge they need to succeed in the AI-attack era.
runZero Perspective
BOD 26-04: A new era of prioritized remediation
A complete breakdown of CISA's BOD 26-04 directive. Learn how the shift to SSVC, risk-based KEV prioritization, and 3-day remediation impacts your...
runZero Perspective
Dawn of the apex agentic adversary
When agentic AI can weaponize exploits in seconds, visibility is everything. Stop the predator with runZero’s exposure management for the AI-attack...
Talks
Identifying exposures at scale with BloodHound OpenGraph
Traditional exposure management misses hidden attack paths. Learn how BloodHound and Cypher queries can uncover vulnerabilities beyond individual...
Podcasts
When is a vulnerability not a vulnerability?
Attackers care about outcomes, not CVEs. Tod Beardsley joins Distilled Security to discuss reframing risk from checklist compliance to adversary...
Podcasts
Know Your Adversary with HD Moore
runZero CEO HD Moore breaks down the myth of air-gapped networks, the impact of AI on security, and why asset connectivity is everything.
Webcasts
Defending in the shadow era: when the CVE feed goes dark
HD Moore walks through the three eras of vulnerability management: the predictable cycles era, the triage ara of AI-scale discovery, and now the...

See Results in Minutes

See & secure your total attack surface. Even the unknowns & unmanageable.