CVE-2025-48733

Summary

DuraComm SPM-500 DP-10iN-100-MU

lacks access controls for a function that should require user authentication. This could allow an attacker to repeatedly reboot the device.

Affected Software

VendorProductVersion RangeStatus
DuraComm CorporationSPM-500 DP-10iN-100-MU0 <= Version 4.10affected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References