ГлавнаяУязвимости → CVE-2025-15016
9.8критическая

CVE-2025-15016

Описание

Enterprise Cloud Database developed by Ragic has a Hard-coded Cryptographic Key vulnerability, allowing unauthenticated remote attackers to exploit the fixed key to generate verification information and log into the system as any user.

Затрагиваемое ПО
Ragic Enterprise cloud database
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.twcert.org.tw/en/cp-139-10588-771e5-2.htmlhttps://www.twcert.org.tw/tw/cp-132-10587-797c6-1.html