CVE-2025-54319

July 20, 2025 invoker category_cve

CVE Details

Basic Information

Title	CVE-2025-54319
Type	cve
Published	2025-07-20T00:00:00.000Z
Modified	2025-07-20T20:46:59.300Z

Product Information

Vendor	Westermo
Product	WeOS
Version	5.24.0

CVSS Information

Base Score	6.3 (MEDIUM)
Attack Vector	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected Products

Westermo WeOS 5.24.0

Additional Information

CWE List	CWE-532
Source	mitre

Description

An issue was discovered in Westermo WeOS 5 (5.24 through 5.24.4). A threat actor potentially can gain unauthorized access to sensitive information via system logging information (syslog verbose logging that includes credentials).

References

https://www.westermo.com/-/media/Files/Cyber-security/westermo_sa_25-08_sensitive_information_in_logging.pdf?rev=40c4e78bd1524f639a89cd1b005e0f23&hash=64987A18FFECA633F23DB11FE5EAFA9A
https://www.westermo.com/uk/support/security-advisories

View Full CVE Details