EUVD-2025-9615

ID: EUVD-2025-9615

Severity: medium

CVSS v4: 6.9 (CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N)

CVSS v3: Not provided

CWE: None listed

Source: ENISA

Description

SaTECH BCU in its firmware version 2.1.3 uses the HTTP protocol. The use of the HTTP protocol for web browsing has the problem that information is exchanged in unencrypted text. Since sensitive data such as credentials are exchanged, an attacker could obtain them and log in legitimately.

Timestamps

Normalized: 2025-12-31T11:32:31Z UTC
Last updated: 2025-12-31T11:31:06Z UTC

References

No references provided.

VulnAI

EUVD-2025-9615

Description

Timestamps

References