CVE-2025-5379 – NuCom NC-WR744G Console Application Hard-Coded Credentials Remote Vulnerability

May 31, 2025

CVE ID : CVE-2025-5379

Published : May 31, 2025, 2:15 p.m. | 3 hours, 29 minutes ago

Description : A vulnerability classified as critical was found in NuCom NC-WR744G 8.5.5 Build 20200530.307. This vulnerability affects unknown code of the component Console Application. The manipulation of the argument CMCCAdmin/useradmin/CUAdmin leads to hard-coded credentials. The attack can be initiated remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5380 – Ashinigit XueShengZhuSu Image File Upload Remote Path Traversal Vulnerability

Next Article My Journey to NASA’s Hall of Fame

Highlights

CVE-2025-48925 – TeleMessage MD5 Hashing Authentication Bypass

May 28, 2025

CVE ID : CVE-2025-48925

Published : May 28, 2025, 5:15 p.m. | 22 minutes ago

Description : The TeleMessage service through 2025-05-05 relies on the client side (e.g., the TM SGNL app) to do MD5 hashing, and then accepts the hash as the authentication credential, as exploited in the wild in May 2025.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Smashing Animations Part 4: Optimising SVGs

I test AI tools for a living. Here are 3 image generators I actually use and how

The world’s smallest 65W USB-C charger is my latest travel essential

This Spotlight alternative for Mac is my secret weapon for AI-powered search

Tech prophet Mary Meeker just dropped a massive report on AI trends – here’s your TL;DR

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Simplify Negative Relation Queries with Laravel’s whereDoesntHaveRelation Methods

Cast Model Properties to a Uri Instance in 12.17

My Favorite Obsidian Plugins and Their Hidden Settings

My Favorite Obsidian Plugins and Their Hidden Settings

Rilasciata /e/OS 3.0: Nuova Vita per Android Senza Google, Più Privacy e Controllo per l’Utente

Rilasciata Oracle Linux 9.6: Scopri le Novità e i Miglioramenti nella Sicurezza e nelle Prestazioni

CVE-2025-5379 – NuCom NC-WR744G Console Application Hard-Coded Credentials Remote Vulnerability

HPE StoreOnce Faces Critical CVE-2025-37093 Vulnerability — Urges Immediate Patch Upgrade

CISA Adds Qualcomm Vulnerabilities to KEV Catalog

tonysm/importmap-laravel

CVE-2025-4179 – Flynax Bridge WordPress Privilege Escalation

An early warning system for novel AI risks

Set an AppImage Application as Default App

CVE-2025-48925 – TeleMessage MD5 Hashing Authentication Bypass

CVE-2025-43851 – Adobe Retrieval-based-Voice-Conversion-WebUI Remote Code Execution Vulnerability

Sleep multiple thread groups at the same time

Everything coming to Call of Duty: Black Ops 6 multiplayer with Season 3

CVE-2025-5379 – NuCom NC-WR744G Console Application Hard-Coded Credentials Remote Vulnerability

Related Posts