Pricing Enterprise

CVE-2025-48045

NONE

An unauthenticated HTTP GET request to the /client.php endpoint will disclose the default administrator user credentials.

Published: 5/29/2025Updated: 5/29/2025

View on NVD View on MITRE

Description

An unauthenticated HTTP GET request to the /client.php endpoint will disclose the default administrator user credentials.

AI AnalysisPowered by AI

References

https://www.rapid7.com/blog/post/2025/05/29/cve-2025-48045-cve-2025-48046-cve-2025-48047-mici-netfax-server-product-vulnerabilities-not-fixed/