CVE-2025-2859

Published: Mar 28, 2025

Modified: Apr 4, 2025

PUBLISHED

Description

An attacker with network access, could capture traffic and obtain user cookies, allowing the attacker to steal the active user session and make changes to the device via web, depending on the privileges obtained by the user.

Vendor	Product	Versions
Arteche	saTECH BCU	affected `2.1.3`

Weaknesses (CWE)

CWE-287

References

https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-arteches-satech-bcu

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-2859

Description

Affected Products

Weaknesses (CWE)

References