CNNVD-202511-964 Information

CNNVD ID

CNNVD-202511-964

Related CVE

CVE-2025-41731

• CNNVD Published: 2025-11-10

Description (Chinese)

Jumo variTRON300是中国久茂自动化（Jumo）公司的一个自动化系统。 Jumo variTRON300存在安全特征问题漏洞，该漏洞源于密码生成算法存在缺陷，可能导致未经验证的本地攻击者通过暴力破解获取密码，从而获得设备root权限。

Description (English)

Jumo varitron 300 is an automated system of Jumo China. Jumo varitron 300 has a security feature loophole, which stems from a flaw in the password generation algorithm, which may lead unverified local assailants to obtain passwords through violent hacking, thus obtaining equipment root privileges.

Hazard Level

Medium

Vulnerability Type

安全特征问题

Affected Vendor

久茂自动化

Published

2025-11-10

Last Modified

2026-02-24

References

https://jumo.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-086.json