VDB-311630 · CVE-2025-5871 · EUVD-2025-17449

Papendorf SOL Connect Center 3.3.0.0 Web Interface कमकुवत प्रमाणीकरण

एक कमकुवतपणा जो समस्याग्रस्त म्हणून वर्गीकृत केला आहे, तो Papendorf SOL Connect Center 3.3.0.0 मध्ये आढळून आला आहे. या ठिकाणी परिणाम झाला आहे अज्ञात फंक्शन घटक Web Interface च्या. सॉफ्टवेअरमध्ये वापर कमकुवत प्रमाणीकरण घडवून आणतो. समस्या जाहीर करण्यासाठी CWE वापरल्यास CWE-306 येथे नेले जाते. ही कमतरता प्रसिद्ध करण्यात आली होती 08/06/2025. डाउनलोडसाठी सल्ला github.com वर शेअर केला आहे. ही कमतरता CVE-2025-5871 या नावाने ओळखली जाते. दूरवरून हा हल्ला घडवून आणता येतो. तांत्रिक तपशील दिलेले नाहीत. यासाठी एक एक्स्प्लॉइट उपलब्ध आहे. शोषण सार्वजनिकपणे जाहीर झाले आहे आणि त्याचा वापर होऊ शकतो. सध्या USD $0-$5k इतका असू शकतो. प्रूफ-ऑफ-कॉन्सेप्ट म्हणून हे घोषित केले गेले आहे. github.com या ठिकाणी शोषण डाउनलोडसाठी शेअर केले आहे. 0-डे म्हणून त्याची अंदाजे भूमिगत किंमत $0-$5k होती. फायरवॉलवर निर्बंध लावण्याची शिफारस केली जाते. If you want to get best quality of vulnerability data, you may have to visit VulDB.

4 बदल · 88 डेटा पॉइंट्स

शेत	तयार केली 08/06/2025 07:49 PM	अद्ययावत 1/3 08/06/2025 07:51 PM	अद्ययावत 2/3 09/06/2025 12:30 PM	अद्ययावत 3/3 09/06/2025 01:11 PM
software_vendor	Papendorf	Papendorf	Papendorf	Papendorf
software_name	SOL Connect Center	SOL Connect Center	SOL Connect Center	SOL Connect Center
software_version	3.3.0.0	3.3.0.0	3.3.0.0	3.3.0.0
software_component	Web Interface	Web Interface	Web Interface	Web Interface
vulnerability_risk	1	1	1	1
cvss3_vuldb_av	N	N	N	N
cvss3_vuldb_ac	L	L	L	L
cvss3_vuldb_pr	N	N	N	N
cvss3_vuldb_ui	N	N	N	N
cvss3_vuldb_s	U	U	U	U
cvss3_vuldb_c	L	L	L	L
cvss3_vuldb_i	N	N	N	N
cvss3_vuldb_a	N	N	N	N
cvss3_vuldb_e	P	P	P	P
cvss3_vuldb_rl	W	W	W	W
cvss3_vuldb_rc	R	R	R	R
advisory_url	https://github.com/zeke2997/CVE_request_Papendorf_Software_Engineering_GmbH	https://github.com/zeke2997/CVE_request_Papendorf_Software_Engineering_GmbH	https://github.com/zeke2997/CVE_request_Papendorf_Software_Engineering_GmbH	https://github.com/zeke2997/CVE_request_Papendorf_Software_Engineering_GmbH
exploit_availability	1	1	1	1
exploit_publicity	1	1	1	1
exploit_url	https://github.com/zeke2997/CVE_request_Papendorf_Software_Engineering_GmbH	https://github.com/zeke2997/CVE_request_Papendorf_Software_Engineering_GmbH	https://github.com/zeke2997/CVE_request_Papendorf_Software_Engineering_GmbH	https://github.com/zeke2997/CVE_request_Papendorf_Software_Engineering_GmbH
countermeasure_name	Firewall	Firewall	Firewall	Firewall
source_cve	CVE-2025-5871	CVE-2025-5871	CVE-2025-5871	CVE-2025-5871
cna_responsible	VulDB	VulDB	VulDB	VulDB
response_summary	The vendor was contacted early about this disclosure but did not respond in any way.	The vendor was contacted early about this disclosure but did not respond in any way.	The vendor was contacted early about this disclosure but did not respond in any way.	The vendor was contacted early about this disclosure but did not respond in any way.
cvss2_vuldb_av	N	N	N	N
cvss2_vuldb_ac	L	L	L	L
cvss2_vuldb_au	N	N	N	N
cvss2_vuldb_ci	P	P	P	P
cvss2_vuldb_ii	N	N	N	N
cvss2_vuldb_ai	N	N	N	N
cvss2_vuldb_e	POC	POC	POC	POC
cvss2_vuldb_rc	UR	UR	UR	UR
cvss2_vuldb_rl	W	W	W	W
cvss4_vuldb_av	N	N	N	N
cvss4_vuldb_ac	L	L	L	L
cvss4_vuldb_pr	N	N	N	N
cvss4_vuldb_ui	N	N	N	N
cvss4_vuldb_vc	L	L	L	L
cvss4_vuldb_vi	N	N	N	N
cvss4_vuldb_va	N	N	N	N
cvss4_vuldb_e	P	P	P	P
cvss4_vuldb_at	N	N	N	N
cvss4_vuldb_sc	N	N	N	N
cvss4_vuldb_si	N	N	N	N
cvss4_vuldb_sa	N	N	N	N
cvss2_vuldb_basescore	5.0	5.0	5.0	5.0
cvss2_vuldb_tempscore	4.1	4.1	4.1	4.1
cvss3_vuldb_basescore	5.3	5.3	5.3	5.3
cvss3_vuldb_tempscore	4.7	4.7	4.7	4.7
cvss3_meta_basescore	5.3	5.3	5.3	5.3
cvss3_meta_tempscore	4.7	4.7	5.0	5.0
cvss4_vuldb_bscore	6.9	6.9	6.9	6.9
cvss4_vuldb_btscore	5.5	5.5	5.5	5.5
advisory_date	1749333600 (08/06/2025)	1749333600 (08/06/2025)	1749333600 (08/06/2025)	1749333600 (08/06/2025)
price_0day	$0-$5k	$0-$5k	$0-$5k	$0-$5k
vulnerability_cwe		CWE-306 (कमकुवत प्रमाणीकरण)	CWE-306 (कमकुवत प्रमाणीकरण)	CWE-306 (कमकुवत प्रमाणीकरण)
cve_nvd_summary			A vulnerability was found in Papendorf SOL Connect Center 3.3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation leads to missing authentication. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.	A vulnerability was found in Papendorf SOL Connect Center 3.3.0.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Web Interface. The manipulation leads to missing authentication. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
cvss4_cna_av			N	N
cvss4_cna_ac			L	L
cvss4_cna_at			N	N
cvss4_cna_pr			N	N
cvss4_cna_ui			N	N
cvss4_cna_vc			L	L
cvss4_cna_vi			N	N
cvss4_cna_va			N	N
cvss4_cna_sc			N	N
cvss4_cna_si			N	N
cvss4_cna_sa			N	N
cvss4_cna_bscore			6.9	6.9
cvss3_cna_av			N	N
cvss3_cna_ac			L	L
cvss3_cna_pr			N	N
cvss3_cna_ui			N	N
cvss3_cna_s			U	U
cvss3_cna_c			L	L
cvss3_cna_i			N	N
cvss3_cna_a			N	N
cvss3_cna_basescore			5.3	5.3
cvss2_cna_av			N	N
cvss2_cna_ac			L	L
cvss2_cna_au			N	N
cvss2_cna_ci			P	P
cvss2_cna_ii			N	N
cvss2_cna_ai			N	N
cvss2_cna_basescore			5	5
euvd_id				EUVD-2025-17449

◂ मागील बाजूस सिंहावलोकन पुढील ▸

Might our Artificial Intelligence support you?

Check our Alexa App!