A critical deserialization vulnerability in Fuji Electric’s FRENIC-Loader 4 utility can give attackers full arbitrary code execution on industrial engineering workstations when a user opens a maliciously crafted file. Tracked as CVE-2025-9365 and scored 8.4 on the CVSS v4 scale, the flaw affects all versions of the software prior to 1.4.0.1. Fuji Electric has released an updated version (1.4.0.1) that eliminates the unsafe deserialization behavior, and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) published an advisory on September 2, 2025, urging immediate patching and network hardening for facilities running the tool.
The vulnerability was reported by researcher kimiya working with the Trend Micro Zero Day Initiative, and it highlights the persistent risk that engineering utilities pose in operational technology (OT) environments. FRENIC-Loader 4 is a PC application designed to manage and program a wide range of Fuji Electric AC drives, commonly deployed in building automation, manufacturing, and critical infrastructure sectors worldwide. The tool routinely handles project and configuration files exchanged between technicians, contractors, and OEM vendors, making it a prime target for supply-chain attacks.
Inside the CVE-2025-9365 Deserialization Flaw
Deserialization vulnerabilities fall under CWE-502 and occur when an application converts a serialized data stream back into objects without properly validating the source or content. In FRENIC-Loader 4, the unsafe deserialization happens specifically when importing a file through a designated import window. An attacker can embed malicious payloads in a file that, once deserialized, instantiate arbitrary objects or follow “gadget” call chains that lead to remote code execution in the context of the logged-in user.
The vulnerability carries a CVSS v3.1 base score of 7.8 and a CVSS v4 base score of 8.4, with the vector string indicating a local attack vector (AV:L), low attack complexity (AC:L), no privileges required (PR:N), and required user interaction (UI:R). The impact on confidentiality, integrity, and availability is rated high. Although the flaw cannot be triggered remotely without user action, the engineering workstation’s role as a bridge to production networks amplifies the consequences of any successful exploit.
Why Industrial Environments Should Treat This Flaw as Urgent
Engineering workstations often hold elevated access to OT devices and are used to push firmware, update parameters, and manage drive controllers. If an attacker achieves arbitrary code execution under an engineer’s account, they can pivot laterally into control networks, modify device settings, overwrite firmware, or install persistent backdoors. The file-based nature of the exploit aligns with well-established phishing and supply-chain tactics that target industrial organizations.
Real-world scenarios include a spear-phishing email with a malicious FRENIC-Loader project file disguised as a routine configuration update from a vendor, or a compromised third‑party contractor whose legitimate project templates become delivery vehicles for the payload. Even a USB drive left in a parking lot could provide the initial foothold if an operator plugs it into an unpatched machine. Because technicians are trained to trust vendor-supplied files, the required user interaction is a low bar for adversaries to clear.
Official Mitigations: Patch, Harden, and Segment
Fuji Electric advises all users to upgrade to FRENIC-Loader 4 version 1.4.0.1 or later. The patch is the definitive fix and should be the top priority for asset owners. CISA supplements this with standard ICS security recommendations:
- Minimize network exposure for all control system devices, ensuring they are not reachable from the public internet.
- Place OT networks behind firewalls and isolate them from corporate IT environments.
- When remote access is unavoidable, use VPNs that are themselves kept up‑to-date and monitored.
- Perform a thorough impact analysis before deploying any defensive measure in a live production environment.
These measures are sound, but the advisory stops short of offering specific detection signatures or compensating controls for organizations that cannot patch immediately—a common reality in industrial settings where change windows are narrow and validation is costly.
Critical Analysis: Strengths and Gaps in Current Guidance
The vendor patch is the most effective remediation, and the advisory’s rapid publication signals good coordination between the researcher, vendor, and CISA. The clear risk context helps OT operators prioritize the update. However, several practical limitations remain.
First, patching engineering tools in production is non‑trivial. Updates may break integration with custom automation scripts, alter device communication, or require recertification. Many facilities will delay the patch for operational continuity, extending the window of exposure. Second, the local attack vector does not prevent delivery; adversaries need only place a file where an operator can access it—USB drives, shared network folders, and email are all viable. Third, industrial environments often lack host-based endpoint detection and response (EDR) or sufficient logging on engineering workstations, making incident detection and forensic analysis difficult. The advisory notes that no public exploitation has been reported, but file‑triggered flaws historically appear first in targeted campaigns before broader adoption.
Immediate Actions for Operators and IT/OT Teams
Organizations running FRENIC-Loader 4 should take these steps within 72 hours:
- Inventory all instances: Identify every engineering workstation or server where the software is installed and record version numbers.
- Patch planning: Obtain version 1.4.0.1 from Fuji Electric’s official channels and test it in a staging environment that mirrors production workflows. Verify that device templates, automation sequences, and communication links remain intact.
- Restrict file transfers: Block or heavily monitor inbound file transfers to engineering machines. Disable external USB ports and unpatchable network shares where operationally feasible.
- Strengthen endpoint protections: Ensure Windows Defender or a trusted EDR product is active with exploit mitigation features enabled. Turn on controlled folder access or application whitelisting if it does not impede critical operations.
Within 1–2 weeks, implement procedural and logging enhancements:
- File handling policies: Require validation, checksum verification, or administrative review for any third‑party project file before it is opened on a machine running FRENIC‑Loader.
- Centralized logging: Collect endpoint and application logs from engineering workstations. Monitor for unexpected child processes spawned by the loader, unscheduled network connections, or persistence artifacts created around file import events.
- Least privilege: Run FRENIC‑Loader under a dedicated non‑administrative user account. Avoid granting the loader’s user domain‑admin or broad OT privileges.
- Network segmentation: Confirm that engineering workstations are logically isolated from critical control networks; use jump hosts to mediate any required access.
Over a 30–90 day horizon, adopt more resilient architectural controls:
- Application allow‑listing: Restrict executable content on engineering hosts so only approved binaries and scripts can run.
- Secure artifact repositories: Replace ad‑hoc file exchanges with a repository that enforces content scanning, authentication, and version control.
- Supplier security clauses: Update procurement contracts to mandate secure file transfer practices and vulnerability disclosure timelines.
Detection Guidance: Identifying a Compromise
Because exploitation yields arbitrary code execution, defenders should look for anomalies that deviate from normal engineering workstation behavior:
- The FRENIC‑Loader process spawning cmd.exe, PowerShell, or other unexpected child processes.
- Outbound network connections from the workstation to unknown external IP addresses immediately after a file import.
- New scheduled tasks, services, or registry auto‑start entries created by the engineering user account.
- Unknown files appearing in the application’s installation directory or temporary folders during or just after a file import.
- Antivirus or EDR alerts tied to a recently opened project file.
Preserve disk and memory images from suspect machines, along with timestamps and the original imported file. Correlate process creation events with user activity logs to build a forensic timeline.
Safe Patch Rollout on Windows Engineering Stations
Many FRENIC‑Loader 4 installations reside on Windows systems, so safe deployment should follow these steps:
- Test first: Install 1.4.0.1 on a representative workstation or virtual clone. Execute a full suite of typical operations—importing project files, communicating with drives, and running any automation scripts. Confirm stability.
- Staged rollout: Push the update to a small number of non‑critical workstations and observe for 48–72 hours. Collect feedback from operators before expanding to the rest of the fleet.
- Change control: Schedule the update during a defined maintenance window. Keep a full backup or system image of pre‑patch workstations for rapid rollback.
- Validate source: Download the patch only from Fuji Electric’s official website or verified support portal; check digital signatures and SHA‑256 hashes if provided.
Windows‑Specific Defenses for OT Environments
For Windows‑based engineering workstations, administrators can layer additional mitigations:
- Enable Windows Defender Exploit Guard and configure Attack Surface Reduction rules that block office‑based macro execution and script obfuscation.
- Turn on Controlled Folder Access to protect sensitive directories from unauthorized writes.
- Use AppLocker or Windows Defender Application Control to restrict which executables, scripts, and DLLs can load.
- Harden Microsoft Office and web browsers to block automatic downloads and prompt before opening files from external sources.
- Remove local administrator rights from day‑to‑day engineering accounts—this limits the damage if code execution occurs under that user context.
- Deploy SMB and DNS monitoring to detect anomalous file writes or beaconing activity post‑import.
Breaking the Cycle: Why Deserialization Bugs Keep Appearing
Deserialization flaws are not new, yet they continue to surface in industrial software. Vendors can reduce recurrence by:
- Implementing strict allow‑list deserialization: only whitelisted classes and types are permitted during object reconstruction.
- Treating all file import formats as hostile and applying thorough input validation, size limits, and fail‑safe parsing.
- Integrating fuzz testing and static analysis focused on deserialization and object‑instantiation paths into their secure development lifecycle.
- Providing deterministic upgrade paths and clear change logs for OT‑adjacent tools, reducing operator friction that delays critical patches.
The industrial control systems community must also demand better from vendors: security through obscurity is no longer acceptable when a single crafted file can open a pathway from the IT‑OT boundary into safety‑critical systems.
Closing Assessment
CVE-2025-9365 in FRENIC‑Loader 4 is a stark reminder that the tools engineers rely on daily are themselves an attack surface. The vulnerability requires user interaction and local file access, but that does little to lower the risk in environments where employees routinely open vendor files and where the targeted workstation holds the keys to the production floor. The official patch—version 1.4.0.1—is available and should be tested and rolled out without delay. Combined with network segmentation, strict file handling policies, and Windows‑specific hardening, asset owners can close the most obvious exploit paths and raise the cost for adversaries aiming to compromise critical infrastructure through the engineering back door. The window to act is now, before a crafted project file makes its way onto an unpatched host and turns a routine import into a system‑wide foothold.