CVE-2025-11899 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Agentflow developed by Flowring has an Use of Hard-coded Cryptographic Key vulnerability, allowing unauthenticated remote attackers to exploit the fixed key to…
Critical CVSS: 9.2

CVE-2025-11899

Agentflow developed by Flowring has an Use of Hard-coded Cryptographic Key vulnerability, allowing unauthenticated remote attackers to exploit the fixed key to generate verification information, thereby logging into the system as any user. Attacker must first obtain an user ID in order to exploit this vulnerability.
Vendor
-
Product
-
CWE
CWE-321
Yayın Tarihi
2025-10-17 04:16:06
Güncelleme
2025-10-21 19:31:50
Source Identifier
twcert@cert.org.tw
KEV Date Added
-

Kategoriler

CWE-321 CRITICAL 2025

Referanslar

https://www.twcert.org.tw/en/cp-139-10439-0bd15-2.html https://www.twcert.org.tw/tw/cp-132-10438-1173e-1.html