CVE-2025-55449 | AstrBotDevs AstrBot 3.5.15 Private Key hard-coded key

Inserito da Angelo Barbosa | Mag 8, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in AstrBotDevs AstrBot 3.5.15. This impacts the function Advanced_System_for_Text_Response_and_Bot_Operations_Tool of the component Private Key Handler. This manipulation causes use of hard-coded cryptographic key
.

This vulnerability is handled as CVE-2025-55449. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-55449 | AstrBotDevs AstrBot 3.5.15 Private Key hard-coded key

Post correlati

CVE-2024-56221 | Elicus WPMozo Addons Lite for Elementor Plugin up to 1.2.0 on WordPress cross site scripting

CVE-2025-3117 | Schneider Electric Modicon Controllers M262 prior 5.3.12.51 cross site scripting (SEVD-2025-161-02)

CVE-2025-5559 | TimeZoneCalculator Plugin up to 3.37 on WordPress Shortcode timezonecalculator_output cross site scripting

CVE-2024-53386 | Piqnt Stage.js up to 0.8.10 HTML Element code injection