CVE-2025-1341

CVSS 3.1 Score 3.7 of 10 (low)

Details

Published Feb 16, 2025

CWE ID 521

Summary

CVE-2025-1341 is a recently disclosed vulnerability affecting PMWeb 7.2.0's Setting Handler component. This issue is classified as problematic due to weak password requirements that can be exploited remotely. The complexity of an attack is relatively high, and exploitability is reported to be difficult. However, the exploit has become public, increasing the risk. It is strongly advised to modify configuration settings to mitigate the threat. Despite early notification, the vendor has yet to respond to the disclosure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3ZLlpX
https://www.cve.org/CVERecord?id=CVE-2025-1341
https://nvd.nist.gov/vuln/detail/CVE-2025-1341

Back to Vulnerability Database

CVE-2025-1341

CVSS 3.1 Score 3.7 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations