ГлавнаяУязвимости → CVE-2025-4558
9.8критическая

CVE-2025-4558

Описание

The GPM from WormHole Tech has an Unverified Password Change vulnerability, allowing unauthenticated remote attackers to change any user's password and use the modified password to log into the system.

CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.twcert.org.tw/en/cp-139-10115-f5f14-2.htmlhttps://www.twcert.org.tw/tw/cp-132-10114-10b4b-1.html