CVE-2025-4534

SunGrow Logger1000 weak password

CVSS 6.3 MEDIUMEPSS 0.3%CWE-521

Vexday Risk Score

13Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS 6.3EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

11 may 2025Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

A vulnerability, which was classified as problematic, has been found in SunGrow Logger1000 01_A. This issue affects some unknown processing. The manipulation leads to weak password requirements. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Productos afectados

SunGrow · Logger1000

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://vuldb.com/?ctiid.308279 https://vuldb.com/?id.308279 https://vuldb.com/?submit.566423 https://wiki.shikangsi.com/post/share/a1cc2e2c-1f78-4c29-86dc-181800e34415