← volver
CVE-2025-13477

OTP Bypass in Digital Operation Services' WifiBurada

CVSS 7.1 HIGHEPSS 0.2%CWE-359CWE-522
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.1EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
21 may 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Exposure of private personal information to an unauthorized actor, Insufficiently Protected Credentials vulnerability in Digital Operations Services Inc. WifiBurada allows Authentication Bypass. This issue affects WifiBurada: through 21052026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Productos afectados
Digital Operations Services Inc. · WifiBurada

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0284