{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-2770", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "state": "PUBLISHED", "assignerShortName": "zdi", "dateReserved": "2025-03-24T19:44:24.105Z", "datePublished": "2025-04-23T16:51:56.244Z", "dateUpdated": "2025-04-23T17:59:22.164Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2025-04-23T16:51:56.244Z"}, "title": "BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability", "descriptions": [{"lang": "en", "value": "BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of BEC Technologies routers. Authentication is required to exploit this vulnerability.\n\nThe specific flaw exists within the web-based user interface. The issue results from storing credentials in a recoverable format. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-25986."}], "affected": [{"vendor": "BEC Technologies", "product": "Multiple Routers", "versions": [{"version": "1.04.1.512, 1.04.1.542", "status": "affected"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-256", "description": "CWE-256: Unprotected Storage of Credentials", "type": "CWE"}]}], "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-25-186/", "name": "ZDI-25-186", "tags": ["x_research-advisory"]}], "dateAssigned": "2025-03-24T19:44:24.131Z", "datePublic": "2025-03-25T23:23:51.713Z", "source": {"lang": "en", "value": "Steven C Yu of Trend Micro Research"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "baseScore": 4.9, "baseSeverity": "MEDIUM"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-04-23T17:59:13.072631Z", "id": "CVE-2025-2770", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-23T17:59:22.164Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-2770", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-04-23T17:59:13.072631Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-04-23T17:59:17.998Z"}}], "cna": {"title": "BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability", "source": {"lang": "en", "value": "Steven C Yu of Trend Micro Research"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 4.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"}}], "affected": [{"vendor": "BEC Technologies", "product": "Multiple Routers", "versions": [{"status": "affected", "version": "1.04.1.512, 1.04.1.542"}], "defaultStatus": "unknown"}], "datePublic": "2025-03-25T23:23:51.713Z", "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-25-186/", "name": "ZDI-25-186", "tags": ["x_research-advisory"]}], "dateAssigned": "2025-03-24T19:44:24.131Z", "descriptions": [{"lang": "en", "value": "BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of BEC Technologies routers. Authentication is required to exploit this vulnerability.\n\nThe specific flaw exists within the web-based user interface. The issue results from storing credentials in a recoverable format. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-25986."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-256", "description": "CWE-256: Unprotected Storage of Credentials"}]}], "providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2025-04-23T16:51:56.244Z"}}}, "cveMetadata": {"cveId": "CVE-2025-2770", "state": "PUBLISHED", "dateUpdated": "2025-04-23T17:59:22.164Z", "dateReserved": "2025-03-24T19:44:24.105Z", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "datePublished": "2025-04-23T16:51:56.244Z", "assignerShortName": "zdi"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of BEC Technologies routers. Authentication is required to exploit this vulnerability.\n\nThe specific flaw exists within the web-based user interface. The issue results from storing credentials in a recoverable format. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-25986."}, {"lang": "es", "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n en el almacenamiento de contrase\u00f1as en texto plano de m\u00faltiples enrutadores de BEC Technologies. Esta vulnerabilidad permite a atacantes remotos divulgar informaci\u00f3n confidencial sobre las instalaciones afectadas de los enrutadores de BEC Technologies. Se requiere autenticaci\u00f3n para explotar esta vulnerabilidad. La falla espec\u00edfica se encuentra en la interfaz de usuario web. El problema se debe al almacenamiento de credenciales en un formato recuperable. Un atacante puede aprovechar esta vulnerabilidad para divulgar las credenciales almacenadas, lo que conlleva una mayor vulnerabilidad. Anteriormente, se conoc\u00eda como ZDI-CAN-25986."}], "id": "CVE-2025-2770", "lastModified": "2025-04-29T13:52:47.470", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 1.2, "impactScore": 3.6, "source": "zdi-disclosures@trendmicro.com", "type": "Secondary"}]}, "published": "2025-04-23T17:16:55.027", "references": [{"source": "zdi-disclosures@trendmicro.com", "url": "https://www.zerodayinitiative.com/advisories/ZDI-25-186/"}], "sourceIdentifier": "zdi-disclosures@trendmicro.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-256"}], "source": "zdi-disclosures@trendmicro.com", "type": "Primary"}]}

{}