CVE-2025-52457

CVSS v3.1

5.7

Vector

AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions HBUS Command Centre Server versions prior to 9.30.251028a HBUS Command Centre Server versions prior to 9.20.251028a HBUS Command Centre Server versions prior to 9.10.251028a HBUS Command Centre Server versions 9.00 and prior

Description An observable timing discrepancy exists in HBUS devices that could allow an attacker with physical access to extract device-specific keys, potentially compromising site security.

Recommendations Update HBUS Command Centre Server to version 9.30.251028a or later. Update HBUS Command Centre Server to version 9.20.251028a or later. Update HBUS Command Centre Server to version 9.10.251028a or later. Update HBUS Command Centre Server to a version later than 9.00.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-208

Related Identifiers

CVE-2025-52457

Affected Products

Hbus Command Centre Server

CVE-2025-52457

Weakness Enumeration

Related Identifiers

Affected Products

References · 6