← Zuruck zu CVEs
CVE-2025-26849
MEDIUM4.3
Beschreibung
There is a Hard-coded Cryptographic Key in Docusnap 13.0.1440.24261, and earlier and later versions. This key can be used to decrypt inventory files that contain sensitive information such as firewall rules.
CVE Details
CVSS v3.1 Bewertung4.3
SchweregradMEDIUM
CVSS VektorCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
AngriffsvektorLOCAL
KomplexitatLOW
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht3/4/2025
Zuletzt geandert7/7/2025
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
docusnap:docusnap
Schwachen (CWE)
CWE-1394
Referenzen
https://docs.docusnap.com/en/release-notes/changelog/(cve@mitre.org)
https://www.redteam-pentesting.de/en/advisories/rt-sa-2024-012/(134c704f-9b21-4f2e-91b3-4a467353bcc0)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.