CVE-2025-2770 – BEC Technologies Router Cleartext Password Disclosure

April 23, 2025

CVE ID : CVE-2025-2770

Published : April 23, 2025, 5:16 p.m. | 1 hour, 42 minutes ago

Description : BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of BEC Technologies routers. Authentication is required to exploit this vulnerability.

The specific flaw exists within the web-based user interface. The issue results from storing credentials in a recoverable format. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-25986.

Severity: 4.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-2771 – BEC Technologies Router Authentication Bypass Vulnerability

Next Article CVE-2025-2768 – Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation

Highlights

CVE-2025-48874 – Apache HTTP Server Insecure Deserialization

May 30, 2025

CVE ID : CVE-2025-48874

Published : May 30, 2025, 8:15 p.m. | 1 hour, 25 minutes ago

Description : Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-5257. Reason: This candidate is a duplicate of CVE-2025-5257. Notes: All CVE users should reference CVE-2025-5257 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How Salesforce achieves high-performance model deployment with Amazon SageMaker AI

April 17, 2025

What is the difference between site design and pnp provisioning

June 12, 2025

“Microsoft is WAY ahead of Google with AI security,” says leaked message exposed accidentally following a protest at Build 2025

May 21, 2025

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

AI and its impact on the developer experience, or ‘where is the joy?’

Google launches OSS Rebuild tool to improve trust in open source packages

EcoFlow’s new portable battery stations are lighter and more powerful (DC plug included)

7 ways Linux can save you money

My favorite Kindle tablet just got a kids model, and it makes so much sense

You can turn your Google Photos into video clips now – here’s how

Blade Service Injection: Direct Service Access in Laravel Templates

Blade Service Injection: Direct Service Access in Laravel Templates

This Week in Laravel: NativePHP Mobile and AI Guidelines from Spatie

Retrieve the Currently Executing Closure in PHP 8.5

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

How to Open Control Panel in Windows 11

How to Shut Down Windows 11

CVE-2025-2770 – BEC Technologies Router Cleartext Password Disclosure

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access

Tactics – football lineup builder

CVE-2022-45117 – Apache Struts Remote Code Execution Vulnerability

nativephp/electron

CVE-2025-4198 – Alink Tap Plugin for WordPress Cross-Site Request Forgery (CSRF) Vulnerability

CVE-2025-48874 – Apache HTTP Server Insecure Deserialization

How Salesforce achieves high-performance model deployment with Amazon SageMaker AI

What is the difference between site design and pnp provisioning

“Microsoft is WAY ahead of Google with AI security,” says leaked message exposed accidentally following a protest at Build 2025

CVE-2025-2770 – BEC Technologies Router Cleartext Password Disclosure

Related Posts