ГлавнаяУязвимости → CVE-2025-10880
7.5высокая

CVE-2025-10880

Описание

All versions of Dingtian DT-R002 are vulnerable to an Insufficiently Protected Credentials vulnerability that could allow an attacker to extract the proprietary "Dingtian Binary" protocol password by sending an unauthenticated GET request.

Затрагиваемое ПО
Dingtian-tech Dt-r002 firmwareDingtian-tech Dt-r002
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://www.cisa.gov/news-events/ics-advisories/icsa-25-268-01