CVE-2025-34156 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Tibbo AggreGate Network Manager < 6.40.05 exposes sensitive system information through an unauthenticated endpoint at /cwmp/happyaxis.jsp. The page discloses Ja…
Medium CVSS: 6.9

CVE-2025-34156

Tibbo AggreGate Network Manager < 6.40.05 exposes sensitive system information through an unauthenticated endpoint at /cwmp/happyaxis.jsp. The page discloses Java system properties, server path details, and version information to unauthorized users, resulting in information disclosure that could aid further compromise.
Vendor
-
Product
-
CWE
CWE-497
Yayın Tarihi
2025-10-23 17:15:36
Güncelleme
2025-10-27 13:20:15
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-497 MEDIUM 2025

Referanslar

https://aggregate.digital/downloads.html https://aggregate.digital/products/network-manager.html https://www.vulncheck.com/advisories/tibbo-aggregate-network-manager-system-information-exposure