CVE-2026-25600

Name of the Vulnerable Software and Affected Versions PDBM (affected versions not specified)

Description The application uses a static, hard-coded secret within the PDBM.exe executable for its encryption routines. This secret is utilized by the function responsible for decrypting credentials stored in the configuration file. An attacker with local privileges can extract this constant secret from the binary to decrypt the stored password. Since the associated user account is configured with administrative privileges, this allows for full access to the management interface and operational functions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.