CVE-2025-43928 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

In Infodraw Media Relay Service (MRS) 7.1.0.0, the MRS web server (on port 12654) allows reading arbitrary files via ../ directory traversal in the username fie…
Medium CVSS: 5.8

CVE-2025-43928

In Infodraw Media Relay Service (MRS) 7.1.0.0, the MRS web server (on port 12654) allows reading arbitrary files via ../ directory traversal in the username field. Reading ServerParameters.xml may reveal administrator credentials in cleartext or with MD5 hashing.
Vendor
Infodraw
Product
Pmrs-102 Firmware
CWE
CWE-24
Yayın Tarihi
2025-04-20 03:15:35
Güncelleme
2025-04-24 16:00:50
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-24 Pmrs-102 Firmware MEDIUM Infodraw 2025

Referanslar

https://cfp.eh22.easterhegg.eu/eh22/talk/9UDXSE/ https://mint-secure.de/path-traversal-vulnerability-in-surveillance-software/