CVE-2025-34034 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A hardcoded credential vulnerability exists in the Blue Angel Software Suite deployed on embedded Linux systems. The application contains multiple known default…
Critical CVSS: 9.3

CVE-2025-34034

A hardcoded credential vulnerability exists in the Blue Angel Software Suite deployed on embedded Linux systems. The application contains multiple known default and hardcoded user accounts that are not disclosed in public documentation. These accounts allow unauthenticated or low-privilege attackers to gain administrative access to the device’s web interface. Exploitation evidence was observed by the Shadowserver Foundation on 2025-01-26 UTC.
Vendor
5vtechnologies
Product
Blue Angel Software Suite
CWE
CWE-798
Yayın Tarihi
2025-06-24 01:15:24
Güncelleme
2025-11-20 22:15:56
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-798 Blue Angel Software Suite CRITICAL 5vtechnologies 2025

Referanslar

https://vulncheck.com/advisories/5vtechnologies-blue-angel-hardcoded-credentials https://www.exploit-db.com/exploits/46792 https://www.exploit-db.com/exploits/46792