ГлавнаяУязвимости → CVE-2025-41690
7.4высокая

CVE-2025-41690

Описание

A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user (Maintenance) by viewing the device’s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive configuration settings and the ability to modify device parameters.

CVSS
Балл7.4 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Источники
https://certvde.com/en/advisories/VDE-2025-068