How severe is CVE-2025-2322?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 7.3 out of 10.

What type of vulnerability is CVE-2025-2322?

This is classified as CWE-259, which is a common weakness in software security.

CVE-2025-2322

MEDIUM Year: 2025

CVSS v3 Score

7.3

High

CVSS v2 Score

7.5

High

Weakness Type

CWE-259

View all →

Vulnerability Description

A vulnerability was found in 274056675 springboot-openai-chatgpt e84f6f5. It has been classified as critical. This affects an unknown part of the file /chatgpt-boot/src/main/java/org/springblade/modules/mjkj/controller/OpenController.java. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-11630

MEDIUM

CVSS:7.3(High)

A vulnerability has been found in E-Lins H685, H685f, H700, H720, H750, H820, H820Q, H820Q0 and H900 up to 3.2 and classified as critical. This vulnerability affects unknown code of the component OEM ...

CWE-2592024

CVE-2019-13530

HIGH

CVSS:7.2(High)

Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN Version A, Firmware A.03.09, Part #: M8096-67501, WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by ...

CWE-2592019

CVE-2020-2499

HIGH

CVSS:7.2(High)

A hard-coded password vulnerability has been reported to affect earlier versions of QES. If exploited, this vulnerability could allow attackers to log in with a hard-coded password. QNAP has already f...

CWE-2592020

CVE-2021-32525

HIGH

CVSS:7.2(High)

The same hard-coded password in QSAN Storage Manager's in the firmware allows remote attackers to access the control interface with the administrator’s credential, entering the hard-coded password of ...

CWE-2592021

CVE-2019-3908

HIGH

CVSS:7.5(High)

Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. The password to the zip is hard-coded and unchangeable. An attacker with access to these backups can decrypt them and ob...

CWE-2592019

CVE-2020-12037

HIGH

CVSS:7.5(High)

Baxter PrismaFlex all versions, PrisMax all versions prior to 3.x, The affected devices do not implement data-in-transit encryption (e.g., TLS/SSL) when configured to send treatment data to a PDMS (Pa...

CWE-2592020

CVE-2025-2322

Vulnerability Description

Related Vulnerabilities

CVE-2024-11630

CVE-2019-13530

CVE-2020-2499

CVE-2021-32525

CVE-2019-3908

CVE-2020-12037