PT-2025-22718 · Iridium · Iridium Certus 700
Published
2025-05-23
·
Updated
2025-05-24
·
CVE-2025-41380
CVSS v4.0
6.1
Medium
| Vector | AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:L/SI:H/SA:N |
Name of the Vulnerable Software and Affected Versions
Iridium Certus 700 version 1.0.1
Description
The issue is related to an embedded credentials vulnerability in the code, allowing a local user to retrieve the SSH hash string.
Recommendations
For Iridium Certus 700 version 1.0.1, consider restricting local user access to minimize the risk of exploitation until a patch is available.
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Iridium Certus 700