CVE-2025-3495

9.8CRITICAL

Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.

公開日: 4/16/2025更新日: 4/16/2025
NVDで表示MITREで表示

説明

Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.

AI分析AIによる分析

参照