Is there a public PoC exploit available for CVE-2025-11910?

Yes, a public proof-of-concept exploit is available for CVE-2025-11910. Prioritise patching immediately. EPSS: 0.0%.

Streamax Crocus CVE-2025-11910

Q: What is the CVSS score of CVE-2025-11910?

CVE-2025-11910 has a CVSS 4.0 base score of 2.1 (Low). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

LOW

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') (CWE-74)

2025-10-17 cna@vuldb.com

SQLi Streamax Crocus

2.1

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

2.1 LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

Apr 29, 2026 - 01:34 vuln.today

DescriptionCVE.org

A security vulnerability has been detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This affects the function Query of the file /MemoryState.do?Action=Query. The manipulation of the argument orderField leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

SQL injection in Streamax Crocus 1.3.40 allows authenticated remote attackers to execute arbitrary SQL queries via the orderField parameter in the /MemoryState.do?Action=Query endpoint, potentially exposing or modifying database contents. Publicly available exploit code exists, but the CVSS score of 2.1 reflects low confidentiality, integrity, and availability impact with no scope change. The vendor did not respond to early disclosure.

Technical ContextAI

Streamax Crocus is a surveillance or network management system developed by Shenzhen Ruiming Technology. The vulnerability exists in the Query action handler of the MemoryState.do servlet, where user-supplied input in the orderField parameter is not properly sanitized before being incorporated into SQL queries. CWE-74 (Improper Neutralization of Special Elements in Output Used by a Downstream Component) indicates the application fails to escape or parameterize SQL input, allowing attackers to craft malicious SQL syntax. The affected CPE is cpe:2.3:a:streamax:streamax_crocus:1.3.40:*:*:*:*:*:*:*, indicating version 1.3.40 is confirmed vulnerable.

RemediationAI

No vendor-released patch has been identified at time of analysis. Organizations using Streamax Crocus 1.3.40 should immediately contact Shenzhen Ruiming Technology to request a security update or risk assessment, though the vendor's history of non-response to disclosure suggests this may be unsuccessful. As a compensating control, restrict network access to the /MemoryState.do endpoint using a Web Application Firewall (WAF) configured to block requests containing SQL metacharacters (single quotes, double dashes, semicolons, keywords like UNION, SELECT) in the orderField parameter. Limit authentication credentials for the affected application to administrative users only, or disable the Query action entirely if not operationally critical. Monitor database query logs for suspicious SQL patterns originating from this endpoint. Consider upgrading to a newer version of Streamax Crocus if available from the vendor, or migrating to an actively maintained alternative surveillance platform.

CVE-2025-11910 vulnerability details – vuln.today

Back