CVE-2025-52164
BaseFortify
Publication date: 2025-07-18
Last updated on: 2025-07-22
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| agorum | core_open | 11.9.2 |
| agorum | core_open | 11.10.1 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-256 | The product stores a password in plaintext within resources such as memory or files. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
The vulnerability in Agorum Core Open versions prior to 11.9.2 and 11.10.1 involves storing user credentials in plaintext within a file named agorum-core-datasheet.txt. This file contains sensitive usernames and passwords, including those for mainadmin, demo, and the MySQL database root user. Because these passwords are stored without encryption, unauthorized users who gain access to this file can easily read and misuse these credentials. [1]
How can this vulnerability impact me? :
This vulnerability can lead to unauthorized access to the system by exposing sensitive credentials. Attackers who obtain the plaintext passwords can compromise administrative accounts and the database, potentially leading to data breaches, unauthorized data modification, or further exploitation of the system. The risk is heightened if combined with other vulnerabilities that do not require authentication. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by checking for the presence of the file named agorum-core-datasheet.txt in the agorumcore/doc directory on systems running Agorum Core Open versions prior to 11.9.2 and 11.10.1. This file contains plaintext credentials. A command to detect this file on a Unix-like system could be: `find / -path '*/agorumcore/doc/agorum-core-datasheet.txt' 2>/dev/null`. Additionally, inspecting the contents of this file for plaintext passwords can confirm the vulnerability. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include upgrading Agorum Core Open to version 11.9.2 or 11.10.1 where the vulnerability is fixed. Additionally, users should change all passwords that may have been stored in plaintext, especially for mainadmin, demo, and the MySQL database root user. The vendor recommends using secure password hashing with strong cryptographic algorithms to prevent plaintext storage of credentials. [1]