CVE-2025-0941

MET ONE 3400+ instruments running software v1.0.41 can, under rare conditions, temporarily store credentials in plain text within the system. This data is not available to unauthenticated users.

CVSS v3 5.8 MEDIUM

5.8^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.3 / Impact : 4.0

Attack Vector ADJACENT_NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope CHANGED

References

Link	Resource
https://www.beckman.com/about-us/compliance/coordinated-vulnerability-disclosure/product-security-updates

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type	Values Removed	Values Added
Summary		(es) Los instrumentos MET ONE 3400+ que ejecutan el software v1.0.41 pueden, en circunstancias excepcionales, almacenar temporalmente credenciales en texto plano dentro del sistema. Estos datos no están disponibles para usuarios no autenticados.

26 Feb 2025, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-02-26 17:15

Updated : 2026-04-15 00:35

NVD link : CVE-2025-0941

Mitre link : CVE-2025-0941

CVE.ORG link : CVE-2025-0941

JSON object : View

Products Affected

No product.

CWE

CWE-209

Generation of Error Message Containing Sensitive Information

5.8 /10