216.73.216.133

CVE-2018-25130

· Published 24/12/2025 20:15 · Modified 24/12/2025 21:15

Labels: CVE-2018-25130 2025-12-24CVE-2018-25130CWE-256[email protected]

Essential information

Published
24/12/2025 20:15
Modified
24/12/2025 21:15
Author
Creator
CVSS
6.8 MEDIUM (v3) 6.8 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Beward Intercom 2.3.1 contains a credentials disclosure vulnerability that allows local attackers to access plain-text authentication credentials stored in an unencrypted database file. Attackers can read the BEWARD.INTERCOM.FDB file to extract usernames and passwords, enabling unauthorized access to IP cameras and door stations.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
beward / intercom cpe:2.3:a:beward:intercom:2.3.1:*:*:*:*:*:*:*

References