CVE 9.8 CRITICAL

CVE-2025-65826_CVE-2025-65826

December 11, 2025 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

The mobile application was found to contain stored credentials for the network it was developed on. If an attacker retrieved this, and found the physical location of the Wi-Fi network, they could gain unauthorized access to the Wi-Fi network of the vendor. Additionally, if an attacker were located in close physical proximity to the device when it was first set up, they may be able to force the device to auto-connect to an attacker-controlled access point by setting the SSID and password to the same as which was found in the firmware file.

AI Analysis

Hardcoded credentials vulnerability in Meatmeet-Pro mobile application

Basic Information

ID CVE-2025-65826

Source mitre

Published Dec 10, 2025 at 00:00

Modified Dec 11, 2025 at 20:35

Affected Product

Vendor Meatmeet-Pro Developer

Product Meatmeet-Pro

Version n/a

Affected Versions n/a n/a n/a

CWE Classification

CWE-312

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Meatmeet-Pro Developer

Product Meatmeet-Pro Mobile Application

Version n/a

References

{
    "lastseen": "",
    "description": "The mobile application was found to contain stored credentials for the network it was developed on. If an attacker retrieved this, and found the physical location of the Wi-Fi network, they could gain unauthorized access to the Wi-Fi network of the vendor. Additionally, if an attacker were located in close physical proximity to the device when it was first set up, they may be able to force the device to auto-connect to an attacker-controlled access point by setting the SSID and password to the same as which was found in the firmware file.",
    "published": "2025-12-10T00:00:00.000Z",
    "modified": "2025-12-11T20:35:23.138Z",
    "type": "cve",
    "title": "CVE-2025-65826",
    "source": "mitre",
    "references": "https://github.com/dead1nfluence/Meatmeet-Pro-Vulnerabilities/blob/main/Mobile-Application/Hardcoded-Credentials.md\nhttps://gist.github.com/dead1nfluence/4dffc239b4a460f41a03345fd8e5feb5#file-hardcoded-credentials-mobile-md",
    "id": "CVE-2025-65826",
    "bulletinFamily": "",
    "cwe": [
        "CWE-312"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Meatmeet-Pro",
    "version": "n/a",
    "vendor": "Meatmeet-Pro Developer",
    "ai_description": "Hardcoded credentials vulnerability in Meatmeet-Pro mobile application",
    "ai_severity": "Critical",
    "ai_vendor": "Meatmeet-Pro Developer",
    "ai_product": "Meatmeet-Pro Mobile Application",
    "ai_version": "n/a",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply