CVE-2025-41705

Medium

An unauthenticated remote attacker (MITM) can intercept the websocket messages to gain access to the login credentials for the Webfrontend.

CERTVDE·CWE-523·Published 2025-10-14

CVSS

6.8

EPSS

0.00

KEV

Exploits

cve.orgen

139 chars

An unauthenticated remote attacker (MITM) can intercept the websocket messages to gain access to the login credentials for the Webfrontend.

NVDen

139 chars

An unauthenticated remote attacker (MITM) can intercept the websocket messages to gain access to the login credentials for the Webfrontend.

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	6.8	—	—	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
3.1	Secondary	NVD	6.8	1.6	5.2	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N