CVE-2025-2147 MEDIUM

CVE-2025-2147: Beijing Zhide Intelligent Internet Technology Modern Farm Digital Integrated Management System file access

Vendor Beijing Zhide Intelligent Internet Technology

Product Modern Farm Digital Integrated Management System

Weakness CWE-552 · Files accessible externally

Published March 10, 2025

Last update March 10, 2025

View on NVD All CVEs

CVSS base score

6.9/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A vulnerability was found in Beijing Zhide Intelligent Internet Technology Modern Farm Digital Integrated Management System 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to files or directories accessible. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Multiple endpoints are affected. The vendor was contacted early about this disclosure but did not respond in any way.

Key dates

02Disclosure timeline

March 10, 2025 CVE published

March 10, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-2147 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/552.html

Related vulnerabilities

Identifiers

CVE CVE-2025-2147

CWE CWE-552

CVSS 6.9 / MEDIUM

Affected versions