CVE-2025-1393
Published: 05 March 2025
Description
Adversaries may obtain and abuse credentials of existing accounts as a means of gaining Initial Access, Persistence, Privilege Escalation, or Defense Evasion.
Security Summary
CVE-2025-1393 is a critical vulnerability (CVSS 3.1 score of 9.8, AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) published on 2025-03-05, stemming from the use of hard-coded credentials (CWE-798) in the affected product. It enables an unauthenticated remote attacker to gain full administration privileges without requiring prior authentication or user interaction.
An unauthenticated attacker with network access to the affected product can exploit this vulnerability by leveraging the hard-coded credentials. Successful exploitation grants complete administrative control, resulting in high impacts to confidentiality, integrity, and availability.
The advisory at https://certvde.com/en/advisories/VDE-2025-021 provides further details on mitigation and patches for this vulnerability.
Details
- CWE(s)
MITRE ATT&CK Enterprise Techniques
Why these techniques?
The vulnerability description directly describes remote unauthenticated exploitation of a public-facing product via hardcoded credentials to obtain full administrative access, mapping to T1190 for the exploitation method and T1078 for leveraging the resulting valid accounts.