CVE-2025-2185

Name of the Vulnerable Software and Affected Versions ALBEDO Telecom Net.Time - PTP/NTP clock (Serial No. NBC0081P) version 1.4.4

Description The issue is related to an insufficient session expiration, which could allow an attacker to transmit passwords over unencrypted connections, resulting in the product becoming vulnerable to interception. This could permit attackers to intercept passwords.

Recommendations For version 1.4.4, consider updating to a newer version that addresses the insufficient session expiration issue, although the specific updated version is not provided. As a temporary workaround, restrict access to unencrypted connections to minimize the risk of password interception.