CVE-2025-4557 Information

Description

The specific APIs of Parking Management System from ZONG YU has a Missing Authentication vulnerability allowing unauthenticated remote attackers to access specific APIs and operate system functions. These functions include opening gates and restarting the system.

Reference

https://www.twcert.org.tw/en/cp-139-10113-58c29-2.html https://www.twcert.org.tw/tw/cp-132-10112-5de7e-1.html