← Back to CVEs
CVE-2025-13175
N/ADescription
Y Soft SafeQ 6 renders the Workflow Connector password field in a way that allows an administrator with UI access to reveal the value using browser developer/inspection tools. The affected customers are only those with a password-protected scan workflow connector. This issue affects Y Soft SafeQ 6 in versions before MU106.
CVE Details
CVSS v3.1 ScoreN/A
Published1/14/2026
Last Modified1/14/2026
Sourcenvd
Honeypot Sightings0
Weaknesses (CWE)
CWE-549
References
https://cert.pl/en/posts/2026/01/CVE-2025-13175(cvd@cert.pl)
https://www.ysoft.com/safeq(cvd@cert.pl)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.