CVE-2025-28389 – OpenC3 COSMOS Password Bypass Vulnerability

June 13, 2025

CVE ID : CVE-2025-28389

Published : June 13, 2025, 2:15 p.m. | 3 hours, 51 minutes ago

Description : Weak password requirements in OpenC3 COSMOS v6.0.0 allow attackers to bypass authentication via a brute force attack.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-36631 – Tenable Agent Local Privilege Escalation

Next Article CVE-2025-28388 – OpenC3 COSMOS Hardcoded Credentials Vulnerability

Newest LF Decentralized Trust Lab HOPrS identifies if photos have been altered

Coder reimagines development environments to make them more ideal for AI agents

Report: AI coding productivity gains cancelled out by other friction points that slow developers down

15 Proven Benefits of Outsourcing Node.js Development for Large Organizations

How passkeys work: Do your favorite sites even support passkeys?

Samsung Galaxy Z Fold 7 vs. Z Fold 6: I tried both phones, and the difference is dramatic

Cor, blimey! The ASUS ROG Ally drops to its lowest-ever price for Amazon Prime Day in the UK — the only Windows handheld to permanently replace my Steam Deck

Owlcat Games talks to us about about WH40K: Rogue Trader, the next game ‘Dark Heresy’ — and how the studio feels about working with Xbox Game Pass

Cally – Small, feature-rich calendar components

Cally – Small, feature-rich calendar components

Working with the Command Line and WP-CLI

Access to Care Is Evolving: What Consumer Insights and Behavior Models Reveal

Cor, blimey! The ASUS ROG Ally drops to its lowest-ever price for Amazon Prime Day in the UK — the only Windows handheld to permanently replace my Steam Deck

Cor, blimey! The ASUS ROG Ally drops to its lowest-ever price for Amazon Prime Day in the UK — the only Windows handheld to permanently replace my Steam Deck

Owlcat Games talks to us about about WH40K: Rogue Trader, the next game ‘Dark Heresy’ — and how the studio feels about working with Xbox Game Pass

Microsoft says ‘we have threads at home’ — rolls out feature Slack has had for years

CVE-2025-28389 – OpenC3 COSMOS Password Bypass Vulnerability

CVE-2025-3497 – Radiflow iSAP Smart Collector EOL Vulnerability

CVE-2025-3498 – Radiflow iSAP Smart Collector Unauthenticated Remote Command Execution and Configuration Modification

CVE-2025-49223 – Billboard.js Prototype Pollution Vulnerability

CVE-2025-2776 – SysAid XXE Vulnerability

Xbox confirmed to be in attendance for Tokyo Game Show 2025 — set to be its biggest show yet

Divine D.: un nuovo smartphone GNU/Linux con processore RK3588S

Rilasciata Mabox Linux 25.04: aggiornamento mensile della distribuzione Arch-based con Openbox personalizzato

CVE-2011-10007 – Apache::FileFind::Rule Arbitrary Code Execution Vulnerability

9 Best Free and Open Source Linux Disk Encryption Tools

CVE-2025-7108 – Risesoft Y9 Digital-Infrastructure Remote Path Traversal Vulnerability

CVE-2025-28389 – OpenC3 COSMOS Password Bypass Vulnerability

Related Posts