Suprema · Biostar 2 · CVE-2025-41257
**Name of the Vulnerable Software and Affected Versions**
Suprema BioStar 2 version 2.9.11.6
**Description**
BioStar 2 version 2.9.11.6 allows users to set a new password without providing the current password. Exploiting this flaw, in combination with other vulnerabilities, can lead to unauthorized account access and potential system compromise.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.