CVE-2025-9914 MEDIUM

CVE-2025-9914

Vendor Sick Ag
Product Baggage Analytics
Weakness CWE-288
Published October 6, 2025
Last update May 13, 2026

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

The credentials of the users stored in the system's local database can be used for the log in, making it possible for an attacker to gain unauthorized access. This could potentially affect the confidentiality of the application.

Key dates

02Disclosure timeline

October 6, 2025 CVE published
May 13, 2026 Record updated