What is the CVSS score of CVE-2025-28381?

CVE-2025-28381 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N. EPSS exploitation probability: 0.1%.

Which versions of Cosmos are affected by CVE-2025-28381?

OpenC3 COSMOS installations before v6.0.2 expose service credentials stored in container environment variables to attackers.

Is there a public PoC exploit available for CVE-2025-28381?

Yes, a public proof-of-concept exploit is available for CVE-2025-28381. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2025-28381?

Within 24 hours: Inventory all OpenC3 COSMOS deployments and identify current versions; isolate affected instances from production networks if upgrade timeline exceeds 48 hours. Within 7 days: Contact vendor for v6.0.2 availability and timeline; if unavailable, implement network segmentation to restrict container-to-service communication and rotate all service credentials used by COSMOS. Within 30 days: Complete upgrade to v6.0.2 or later; conduct forensic audit for unauthorized credential access; implement secrets management solution (HashiCorp Vault, AWS Secrets Manager) to prevent future environment variable exposure.

Cosmos CVE-2025-28381

EUVD-2025-18283 HIGH

Cleartext Storage of Sensitive Information in an Environment Variable (CWE-526)

2025-06-13 cve@mitre.org

Information Disclosure Cosmos

7.5

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.5 HIGH

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 21:34 euvd

EUVD-2025-18283

Analysis Generated

Mar 14, 2026 - 21:34 vuln.today

PoC Detected

Oct 27, 2025 - 16:15 vuln.today

Public exploit code

CVE Published

Jun 13, 2025 - 14:15 nvd

HIGH 7.5

DescriptionCVE.org

A credential leak in OpenC3 COSMOS before v6.0.2 allows attackers to access service credentials as environment variables stored in all containers.

AnalysisAI

A security vulnerability in OpenC3 COSMOS (CVSS 7.5) that allows attackers. Risk factors: public PoC available.

Technical ContextAI

Vulnerability type not specified by vendor. CVSS 7.5 indicates high severity. Affects OpenC3 COSMOS.

RemediationAI

Monitor vendor channels for patch availability.

CVE-2025-28381 vulnerability details – vuln.today

Back

Cosmos CVE-2025-28381

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code