CVE-2025-68919 MEDIUM

CVE-2025-68919

Vendor Fujitsu / Fsas Technologies
Product ETERNUS SF ACM/SC/Express
Weakness CWE-532 · Sensitive info in logs
Published December 24, 2025
Last update December 24, 2025

CVSS base score

5.6/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

What the vulnerability does

01Description

Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express (DX / AF Management Software) before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and availability.

Key dates

02Disclosure timeline

December 24, 2025 CVE published
December 24, 2025 Record updated