CNNVD-202506-2801 Information

Jun 20, 2025 cve

CNNVD ID

CNNVD-202506-2801

CVE-2025-25037

CNNVD Published: 2025-06-20

Description (Chinese)

Aquatronica Controller System是意大利Aquatronica公司的一款为水族爱好者设计的综合性电子控制平台。 Aquatronica Controller System存在安全漏洞，该漏洞源于tcp.php端点未限制未经验证的访问，可能导致信息泄露。以下版本受到影响：Aquatronica Controller System firmware 5.1.6及之前版本和web interface 2.0及之前版本。

Description (English)

Aquatronica Controller Systems is a comprehensive electronic control platform for aquarians designed by Aquatronica, Italy. There is a security loophole in Aquatronica Controller Systems, which stems from the fact that the tcp.php endpoint does not restrict unverified access, which may lead to the disclosure of information. The following version was affected: Aquatronica Controller System Airmware 5.1.6 et seq. and web interface 2.0 et al.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Aquatronica

Published

2025-06-20

Last Modified

2026-02-24

References

https://fortiguard.fortinet.com/encyclopedia/ips/56008 https://vulncheck.com/advisories/aquatronica-controller-system-credential-leak https://www.aquatronica.com https://www.exploit-db.com/exploits/52028 https://www.zeroscience.mk/en/vulnerabilities/ZSL-2024-5824.php

Share on: