exploitDog

CVE-2025-2862

Опубликовано: 28 мар. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

SaTECH BCU, in its firmware version 2.1.3, performs weak password encryption. This allows an attacker with access to the device's system or website to obtain the credentials, as the storage methods used are not strong enough in terms of encryption.

Ссылки

https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-arteches-satech-bcu
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:arteche:satech_bcu_firmware:2.1.3:*:*:*:*:*:*:*

cpe:2.3:h:arteche:satech_bcu:-:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.0005

Низкий

7.5 High

CVSS3

Дефекты

CWE-261

Связанные уязвимости

GHSA-h7v6-4m6m-8gjj

CVSS3: 7.5

github

11 месяцев назад

SaTECH BCU, in its firmware version 2.1.3, performs weak password encryption. This allows an attacker with access to the device's system or website to obtain the credentials, as the storage methods used are not strong enough in terms of encryption.

EPSS

Процентиль: 16%

0.0005

Низкий

7.5 High

CVSS3

Дефекты

CWE-261