CVE-2025-64389
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-10-31
Last updated on: 2025-11-04
Assigner: S21sec
Description
Description
The web server of the device performs exchanges of sensitive information in clear text through an insecure protocol.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| circutor | tcprs1+ | 1.0.14 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-319 | The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves the web server of the device transmitting sensitive information in clear text using an insecure protocol, which can be intercepted or accessed by unauthorized parties.
How can this vulnerability impact me? :
The vulnerability can lead to exposure of sensitive information to attackers, potentially resulting in data breaches, loss of confidentiality, and unauthorized access to private data.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70