ГлавнаяУязвимости → CVE-2025-34034
8.8высокая

CVE-2025-34034

Описание

A hardcoded credential vulnerability exists in the Blue Angel Software Suite deployed on embedded Linux systems. The application contains multiple known default and hardcoded user accounts that are not disclosed in public documentation. These accounts allow unauthenticated or low-privilege attackers to gain administrative access to the device’s web interface. Exploitation evidence was observed by the Shadowserver Foundation on 2025-01-26 UTC.

Затрагиваемое ПО
5vtechnologies Blue angel software suite
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://vulncheck.com/advisories/5vtechnologies-blue-angel-hardcoded-credentialshttps://www.exploit-db.com/exploits/46792https://www.exploit-db.com/exploits/46792