CVE-2025-53704

Summary

The password reset mechanism for the Pivot client application is weak, and it may allow an attacker to take over the account.

Affected Software

VendorProductVersion RangeStatus
MAXHUBPivot client application0 < 1.36.2affected
MAXHUBPivot client application1.36.2unaffected

Weaknesses

  • CWE-640: CWE-640

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References