CVE-2025-1341 | PMWeb 7.2.0 Setting weak password

A vulnerability, which was classified as problematic, was found in PMWeb 7.2.0. This affects an unknown part of the component Setting Handler. The manipulation leads to weak password requirements.

This vulnerability is uniquely identified as CVE-2025-1341. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

It is recommended to change the configuration settings.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-1341 | PMWeb 7.2.0 Setting weak password

Post correlati

CVE-2024-34750 | Apache Tomcat up to 9.0.89/10.1.24/11.0.0-M20 HTTP/2 Stream exceptional condition

CVE-2024-28354 | TRENDnet TEW-827DRU 2.10B01 POST Request apply.cgi usapps.@smb[%d].username command injection

CVE-2024-54378 | Quietly Insights Plugin up to 1.2.2 on WordPress authorization

CVE-2024-43829 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 drm_cvt_mode null pointer dereference