CVE-2025-40653

Medium CVSS: 6.9

User enumeration vulnerability in M3M Printer Server Web. This issue occurs during user authentication, where a difference in error messages could allow an attacker to determine whether a username is valid or not, allowing a brute force attack on valid usernames.

Vendor

Product

CWE

CWE-209

Yayın Tarihi

2025-05-26 13:15:19

Güncelleme

2025-05-28 15:01:30

Source Identifier

cve-coordination@incibe.es

KEV Date Added

Kategoriler

CWE-209 MEDIUM 2025

Referanslar

https://www.incibe.es/en/incibe-cert/notices/aviso/user-enumeration-m3m-printer-server-web