CVE-2025-47872 in 12kPV情報

要約

〜によって MITRE • 2025年08月08日

The public-facing product registration endpoint server responds differently depending on whether the S/N is valid and unregistered, valid but already registered, or does not exist in the database. Combined with the fact that serial numbers are sequentially assigned, this allows an attacker to gain information on the product registration status of different S/Ns.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

公開

2025年08月08日

モデレーション

承諾済み

エントリ

VDB-319195

CPE

準備完了

CWE

CWE-203 (確認済み)

CVSS

5.8 (CNA)

EPSS

0.00260

KEV

いいえ

アクティビティ

非常低い

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-47872
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-47872
CVE Details	https://www.cvedetails.com/cve/CVE-2025-47872/

◂ 前概要次 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!