216.73.217.139

CVE-2025-59745

· Published 02/10/2025 15:15 · Modified 02/10/2025 19:45

Labels: CVE-2025-59745 2025-10-02CVE-2025-59745CWE-327[email protected]

Essential information

Published
02/10/2025 15:15
Modified
02/10/2025 19:45
Author
Creator
CVSS
6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Vulnerability in the cryptographic algorithm of AndSoft's e-TMS v25.03, which uses MD5 to encrypt passwords. MD5 is a cryptographically vulnerable hash algorithm and is no longer considered secure for storing or transmitting passwords. It is vulnerable to collision attacks and can be easily cracked with modern hardware, exposing user credentials to potential risks.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
andsoft / e-tms cpe:2.3:a:andsoft:e-tms:25.03:*:*:*:*:*:*:*

References