PT-2025-9045 · Bosscomm · Bosscomm If740 System+1

Published

2025-02-27

Updated

2025-03-05

CVE-2025-25729

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Bosscomm IF740 Firmware versions 11001.7078 through 11001.0000 Bosscomm IF740 System versions 6.25 through 6.00

Description An information disclosure issue allows attackers to obtain hardcoded cleartext credentials via the update or boot process.

Recommendations For Bosscomm IF740 Firmware versions 11001.7078 through 11001.0000, update the firmware to remove hardcoded credentials. For Bosscomm IF740 System versions 6.25 through 6.00, restrict access to the update and boot processes until a patch is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2025-25729

Affected Products

Bosscomm If740 Firmware

Bosscomm If740 System

PT-2025-9045 · Bosscomm · Bosscomm If740 System+1

CVE-2025-25729

Weakness Enumeration

Related Identifiers

Affected Products

References · 8