CNNVD-202512-563 Information

Dec 04, 2025 cve

CNNVD ID

CNNVD-202512-563

CVE-2025-54303

  • CNNVD Published: 2025-12-04

Description (Chinese)

Thermo Fisher Torrent Suite Django application是美国Thermo Fisher公司的一个核心软件组件。 Thermo Fisher Torrent Suite Django application 5.18.1版本存在安全漏洞,该漏洞源于使用弱默认凭据且未强制执行密码更改策略,可能导致攻击者获取管理员权限。

Description (English)

Thermo Fisher Torrent Suite Django application is a core software component of the United States company Hermo Fisher. There is a security loophole in version 5.18.1 of Thermo Fisher Torrent Suite Django application, which stems from the use of weak defaults and failure to enforce password change strategies, which may lead to the aggressor gaining administrator ’ s authority.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Thermo Fisher

Published

2025-12-04

Last Modified

2026-02-24

References

https://assets.thermofisher.com/TFS-Assets/LSG/manuals/MAN0026163-Torrent-Suite-5.18-UG.pdf https://documents.thermofisher.com/TFS-Assets/CORP/Product-Guides/Ion_OneTouch_2_and_Torrent_Suite_Software.pdf https://www.thermofisher.com/us/en/home/life-science/sequencing/next-generation-sequencing/ion-torrent-next-generation-sequencing-workflow/ion-torrent-next-generation-sequencing-data-analysis-workflow/ion-torrent-suite-software.html https://access.redhat.com/security/cve/cve-2025-54303

Share on: