exploitDog

CVE-2025-44612

Опубликовано: 30 мая 2025

Источник: nvd

CVSS3: 5.9

EPSS Низкий

Описание

Tinxy WiFi Lock Controller v1 RF was discovered to transmit sensitive information in plaintext, including control information and device credentials, allowing attackers to possibly intercept and access sensitive information via a man-in-the-middle attack.

Ссылки

https://github.com/ShravanSinghRathore/Tinxy/wiki/1.-WiFi-Lock-Controller-v1-RF-%281%E2%80%909%29
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:tinxy:wifi_lock_controller_v1_rf_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:tinxy:wifi_lock_controller_v1_rf:-:*:*:*:*:*:*:*

EPSS

Процентиль: 3%

0.00017

Низкий

5.9 Medium

CVSS3

Дефекты

CWE-319

Связанные уязвимости

GHSA-pw25-rj5h-xh7p

CVSS3: 5.9

github

8 месяцев назад

Tinxy WiFi Lock Controller v1 RF was discovered to transmit sensitive information in plaintext, including control information and device credentials, allowing attackers to possibly intercept and access sensitive information via a man-in-the-middle attack.

EPSS

Процентиль: 3%

0.00017

Низкий

5.9 Medium

CVSS3

Дефекты

CWE-319