CVE-2025-48931 LOW

CVE-2025-48931

Vendor Telemessage
Product service
Weakness CWE-328 · Weak hash
Published May 28, 2025
Last update May 29, 2025

CVSS base score

3.2/10
Attack vector Local
Attack complexity High
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

What the vulnerability does

01Description

The TeleMessage service through 2025-05-05 relies on MD5 for password hashing, which opens up various attack possibilities (including rainbow tables) with low computational effort.

Key dates

02Disclosure timeline

May 28, 2025 CVE published
May 29, 2025 Record updated

Related vulnerabilities

04Related CVE