CVE-2025-56578
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-09-10
Last updated on: 2025-10-15
Assigner: MITRE
Description
Description
An issue in RTSPtoWeb v.2.4.3 allows a remote attacker to obtain sensitive information and executearbitrary code via the lack of authentication mechanisms
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| rtsp_to_web | rtsp_to_web | 2.4.3 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-287 | When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in RTSPtoWeb version 2.4.3 allows a remote attacker to obtain sensitive information and execute arbitrary code due to the lack of authentication mechanisms.
How can this vulnerability impact me? :
An attacker exploiting this vulnerability could gain unauthorized access to sensitive information and potentially execute arbitrary code on the affected system, leading to data breaches, system compromise, or further attacks.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70