← voltar
CVE-2025-58152

CVE-2025-58152

CVSS 6.9 MEDIUMEPSS 0.3%CWE-552
FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
Produtos afetados
Century Systems Co., Ltd. · FutureNet IP-K seriesCentury Systems Co., Ltd. · FutureNet MA-E300 seriesCentury Systems Co., Ltd. · FutureNet MA-P seriesCentury Systems Co., Ltd. · FutureNet MA-S seriesCentury Systems Co., Ltd. · FutureNet MA-X series

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://jvn.jp/en/vu/JVNVU98191201/https://www.centurysys.co.jp/backnumber/common/jvnvu98191201.html