CVE-2025-8286

Summary

The affected products expose an unauthenticated Telnet-based command line interface that could allow an attacker to modify hardware configurations, manipulate data, or factory reset the device.

Affected Software

VendorProductVersion RangeStatus
Güralp SystemsGüralp FMUS SeriesAll versionsaffected
Güralp SystemsMIN Series DevicesAll versionsaffected

Weaknesses

  • CWE-306: CWE-306 Missing Authentication for Critical Function

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References