CVE-2025-8284

Summary

By default, the Packet Power Monitoring and Control Web Interface do not enforce authentication mechanisms. This vulnerability could allow unauthorized users to access and manipulate monitoring and control functions.

Affected Software

VendorProductVersion RangeStatus
Packet PowerEMX0 < 4.1.0affected
Packet PowerEG0 < 4.1.0affected

Weaknesses

  • CWE-306: CWE-306

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References