CVE-2025-54319
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-20
Last updated on: 2025-07-22
Assigner: MITRE
Description
Description
An issue was discovered in Westermo WeOS 5 (5.24 through 5.24.4). A threat actor potentially can gain unauthorized access to sensitive information via system logging information (syslog verbose logging that includes credentials).
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| westermo | weos | 5.24 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-532 | The product writes sensitive information to a log file. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in Westermo WeOS 5 versions 5.24 through 5.24.4, where a threat actor can potentially gain unauthorized access to sensitive information through system logging. Specifically, verbose syslog logging includes credentials, which can be exploited to access sensitive data.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized disclosure of sensitive information, such as credentials, which could allow an attacker to compromise systems or gain elevated access, potentially leading to further security breaches.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70