CVE-2025-3920 in CMMSinformação

Sumário

de MITRE • 07/07/2025

A vulnerability was identified in SUR-FBD CMMS where hard-coded credentials were found within a compiled DLL file. These credentials correspond to a built-in administrative account of the software. An attacker with local access to the system or the application's installation directory could extract these credentials, potentially leading to a complete compromise of the application's administrative functions. This issue was fixed in version 2025.03.27 of the SUR-FBD CMMS software.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

CERT-PL

Reservar

24/04/2025

Divulgação

07/07/2025

Moderação

aceite

Entrada

VDB-315139

CPE

pronto

CWE

CWE-259 (confirmado)

CVSS

3.3 (VulDB)

EPSS

0.00065

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-3920
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-3920
CVE Details	https://www.cvedetails.com/cve/CVE-2025-3920/

◂ Voltar Visão Geral Próximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!