CWE-341

Predictable from Observable State

2 CVEs Avg CVSS 4.7 MITRE
0
CRITICAL
0
HIGH
2
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2025-42925 MEDIUM Monitor

Due to the lack of randomness in assigning Object Identifiers in the SAP NetWeaver AS JAVA IIOP service, an authenticated attacker with low privileges could predict the identifiers by conducting a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Sap Java
NVD
CVSS 3.1
4.3
EPSS
0.0%
CVE-2025-48461 MEDIUM This Month

A remote code execution vulnerability (CVSS 5.0) that allows an unauthenticated attacker. Remediation should follow standard vulnerability management procedures.

Information Disclosure Wise 4050lan Firmware Wise 4060lan Firmware Wise 4010lan Firmware
NVD
CVSS 3.1
5.0
EPSS
0.0%
CVE-2025-42925
EPSS 0% CVSS 4.3
MEDIUM Monitor

Due to the lack of randomness in assigning Object Identifiers in the SAP NetWeaver AS JAVA IIOP service, an authenticated attacker with low privileges could predict the identifiers by conducting a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Sap Java
NVD
CVE-2025-48461
EPSS 0% CVSS 5.0
MEDIUM This Month

A remote code execution vulnerability (CVSS 5.0) that allows an unauthenticated attacker. Remediation should follow standard vulnerability management procedures.

Information Disclosure Wise 4050lan Firmware Wise 4060lan Firmware +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy