CISA Warning: Critical Flaw (CVE-2025-5310) Exposes Fueling Station Devices

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent security advisory warning fuel infrastructure operators of a critical vulnerability affecting Dover Fueling Solutions’ ProGauge MagLink monitoring devices. Tracked as CVE-2025-5310, the flaw carries a CVSS v3 base score of 9.8, signaling its severe potential impact on operational technology.

“Successful exploitation of this vulnerability could result in an attacker gaining control of the monitoring device, manipulating fueling operations, deleting system configurations, or deploying malware,” the advisory stated.

The vulnerability resides in the ProGauge MagLink LX line of fuel and water tank monitoring systems, specifically:

• MagLink LX 4: Versions prior to 4.20.3
• MagLink LX Plus: Versions prior to 4.20.3
• MagLink LX Ultimate: Versions prior to 5.20.3

These devices are widely used in gas stations and fuel logistics networks to monitor fuel levels, water contamination, and tank conditions—making them vital to safe and efficient fueling operations.

The issue stems from an undocumented and unauthenticated Target Communication Framework (TCF) interface exposed on a specific port. According to CISA, this flaw allows remote attackers to:

• Create, delete, or modify system files
• Potentially achieve remote code execution
• Tamper with operational controls without authentication

Security researcher Souvik Kandar of Microsec (microsec.io) was credited with responsibly disclosing the issue to CISA.

Dover Fueling Solutions has responded by releasing patched firmware versions. Users are strongly urged to:

• Upgrade MagLink LX 4 and LX Plus to version 4.20.3 or later
• Upgrade MagLink LX Ultimate to version 5.20.3 or later

All updates are available via the Dover Fueling Solutions website.

While no known public exploitation has been reported at the time of this writing, the nature of the vulnerability—particularly the unauthenticated access to core device functionality—means this flaw could be appealing for targeted attacks or state-sponsored operations targeting fuel infrastructure.

Related Posts:

• Critical Vulnerabilities in Automated Tank Gauge Systems Threaten Global Infrastructure
• AI Powers a Phishing Frenzy – Zscaler Report Warns of Unprecedented Threat Wave
• RECOPE, Costa Rica’s State-Owned Energy Provider, Grapples with Ransomware Attack and Fuel Supply Disruption
• Infostealers VietCredCare and DuckTail Fuel Facebook Business Account Exploitation
• Synology Surveillance Station Vulnerabilities Expose Systems to Attack – Update Immediately