How severe is CVE-2025-1739?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.1 out of 10.

What type of vulnerability is CVE-2025-1739?

This is classified as CWE-288, which is a common weakness in software security.

CVE-2025-1739

HIGH Year: 2025

CVSS v3 Score

7.1

High

Weakness Type

CWE-288

View all →

Vulnerability Description

An Authentication Bypass vulnerability has been found in Trivision Camera NC227WF v5.8.0 from TrivisionSecurity. This vulnerability allows an attacker to retrieve administrator's credentials in cleartext by sending a request against the server using curl with random credentials to "/en/player/activex_pal.asp" and successfully authenticating the application.

CVE-2022-42275

HIGH

CVSS:7.1(High)

NVIDIA BMC IPMI handler allows an unauthenticated host to write to a host SPI flash bypassing secureboot protections. This may lead to a loss of integrity and denial of service.

CWE-2882022

CVE-2025-30112

HIGH

CVSS:7.1(High)

On 70mai Dash Cam 1S devices, by connecting directly to the dashcam's network and accessing the API on port 80 and RTSP on port 554, an attacker can bypass the device authorization mechanism from the ...

CWE-2882025

CVE-2025-40581

HIGH

CVSS:7.1(High)

A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions with SINEMA Remote Connect Edge Client installed). Affected devices are vulnerable to an authentication bypas...

CWE-2882025

CVE-2021-33700

HIGH

CVSS:7.0(High)

SAP Business One, version - 10.0, allows a local attacker with access to the victim's browser under certain circumstances, to login as the victim without knowing his/her password. The attacker could s...

CWE-2882021