CVE-2025-7357 – LITEON IC48A/IC80A FTP Server Cleartext Credentials Storage Vulnerability

July 16, 2025

CVE ID : CVE-2025-7357

Published : July 16, 2025, 4:15 p.m. | 2 hours, 28 minutes ago

Description : LITEON IC48A firmware versions prior to 01.00.19r and LITEON IC80A firmware versions prior to 01.01.12e store FTP-server-access-credentials in cleartext in their system logs.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53943 – VoidBot Open-Source Discord Bot Command Injection Vulnerability

Next Article CVE-2025-53938 – WeGIA Authentication Bypass

Highlights

CVE-2025-52995 – File Browser Privilege Escalation Vulnerability

June 30, 2025

CVE ID : CVE-2025-52995

Published : June 30, 2025, 8:15 p.m. | 3 hours, 14 minutes ago

Description : File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to version 2.33.10, the implementation of the allowlist is erroneous, allowing a user to execute more shell commands than they are authorized for. The concrete impact of this vulnerability depends on the commands configured, and the binaries installed on the server or in the container image. Due to the missing separation of scopes on the OS-level, this could give an attacker access to all files managed the application, including the File Browser database. This issue has been patched in version 2.33.10.

Severity: 8.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The best proxy server services of 2025: Expert recommended

April 30, 2025

Intel’s former CEO speaks out — “I wanted to finish what I started”

July 1, 2025

Blizzard announces release date for World of Warcraft: The War Within’s 3rd major content patch — a patch that will feature the largest, city-sized raid boss in MMORPG history

July 8, 2025

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Too many open browser tabs? This is still my favorite solution – and has been for years

This new browser won’t monetize your every move – how to try it

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

The details of TC39’s last meeting

The details of TC39’s last meeting

Reclaim Space: Delete Docker Orphan Layers

Notes Android App Using SQLite

KeySmith – SSH key management

KeySmith – SSH key management

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

CVE-2025-7357 – LITEON IC48A/IC80A FTP Server Cleartext Credentials Storage Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Closing Deals Faster: The Future of Sales with AI & Personalization

CVE-2025-21468 – Cisco Firewall Memory Corruption Buffer Overflow

Key Questions to Ask Before Hiring the Right AI Development Company❓

“We’re creating a game that’s steeped in dark fantasy elements” — Capcom talks building a samurai adventure with Onimusha: Way of the Sword

CVE-2025-52995 – File Browser Privilege Escalation Vulnerability

The best proxy server services of 2025: Expert recommended

Intel’s former CEO speaks out — “I wanted to finish what I started”

Blizzard announces release date for World of Warcraft: The War Within’s 3rd major content patch — a patch that will feature the largest, city-sized raid boss in MMORPG history

CVE-2025-7357 – LITEON IC48A/IC80A FTP Server Cleartext Credentials Storage Vulnerability

Related Posts