CVE-2025-41645

High

An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake.

CERTVDE·CWE-669·Published 2025-05-13

CVSS

8.6

EPSS

0.00

KEV

Exploits

cve.orgen

137 chars

An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake.

NVDen

137 chars

An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake.

Un atacante remoto no autenticado podría usar una cuenta de demostración del portal para secuestrar dispositivos que se crearon en esa cuenta por error.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	8.6	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
3.1	Secondary	NVD	8.6	3.9	4.0	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N