How severe is CVE-2025-54807?

CVE-2025-54807 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2025-54807

9.8CRITICAL

The secret used for validating authentication tokens is hardcoded in device firmware for affected versions. An attacker who obtains the signing key can bypass authentication, gaining complete access

Опубликовано: 9/18/2025Обновлено: 9/19/2025

Описание

The secret used for validating authentication tokens is hardcoded in device firmware for affected versions. An attacker who obtains the signing key can bypass authentication, gaining complete access to the system.

ИИ-АнализНа базе ИИ

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-07
https://www.doverfuelingsolutions.com/mea/en/products-and-solutions/automatic-tank-gauging/consoles/progauge-maglink-lx-4-console.html