CVE-2025-9513
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-08-27

Last updated on: 2025-08-29

Assigner: VulDB

Description
A flaw has been found in editso fuso up to 1.0.4-beta.7. This affects the function PenetrateRsaAndAesHandshake of the file src/net/penetrate/handshake/mod.rs. This manipulation of the argument priv_key causes inadequate encryption strength. Remote exploitation of the attack is possible. A high degree of complexity is needed for the attack. The exploitability is reported as difficult.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-08-27
Last Modified
2025-08-29
Generated
2026-06-16
AI Q&A
2025-08-27
EPSS Evaluated
2026-06-14
NVD
CVE-2025-9513
EUVD
EUVD-2025-25874
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
editso_fuso editso_fuso 1.0.4-beta.7
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-310 Cryptographic Issues
CWE-326 The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a flaw in the editso fuso software up to version 1.0.4-beta.7, specifically in the function PenetrateRsaAndAesHandshake located in the file src/net/penetrate/handshake/mod.rs. The flaw involves manipulation of the argument priv_key, which results in inadequate encryption strength. This weakness can be exploited remotely, although the attack requires a high degree of complexity and is considered difficult to execute.

Impact Analysis

The vulnerability can impact you by weakening the encryption strength during the handshake process, potentially allowing a remote attacker to compromise the confidentiality of communications. However, exploitation is difficult and requires a high level of complexity, so the risk is somewhat mitigated by these factors.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-9513. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart