CNNVD-202510-347 Information

CNNVD ID

CNNVD-202510-347

Related CVE

CVE-2025-0642

• CNNVD Published: 2025-10-02

Description (Chinese)

Poscube Assist是土耳其Poscube公司的一款移动报告工具。 Poscube Assist 10.02.2025及之前版本存在信任管理问题漏洞，该漏洞源于使用硬编码凭证和用户控制密钥绕过授权，可能导致身份验证绕过。

Description (English)

Poscube Assist is a mobile reporting tool for the Turkish company Poscube. There was a trust management gap in the Poscube Assist 10.02.2025 and earlier versions, which stemmed from the use of hard-coded vouchers and user control keys to circumvent authorizations, which could lead to a circumvention of identification.

Hazard Level

High

Vulnerability Type

信任管理问题

Affected Vendor

Poscube

Published

2025-10-02

Last Modified

2026-02-24

References

https://www.usom.gov.tr/bildirim/tr-25-0309