CVE-2025-2861

Published: Mar 28, 2025

Modified: Apr 3, 2025

PUBLISHED

Description

SaTECH BCU in its firmware version 2.1.3 uses the HTTP protocol. The use of the HTTP protocol for web browsing has the problem that information is exchanged in unencrypted text. Since sensitive data such as credentials are exchanged, an attacker could obtain them and log in legitimately.

Vendor	Product	Versions
Arteche	saTECH BCU	affected `2.1.3`

Weaknesses (CWE)

CWE-319

References

https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-arteches-satech-bcu

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-2861

Description

Affected Products

Weaknesses (CWE)

References