Güralp Systems Güralp FMUS series Missing Authentication for Critical Function

July 31, 2025 invoker category_cve

CVE Details

Basic Information

Title Güralp Systems Güralp FMUS series Missing Authentication for Critical Function
Type cve
Published 2025-07-31T19:23:37.557Z
Modified 2025-07-31T19:47:19.620Z

Product Information

Vendor Güralp Systems
Product Güralp FMUS Series Seismic Monitoring Devices
Version All versions

CVSS Information

Base Score 9.8 (CRITICAL)
Attack Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Analysis

AI Description A critical vulnerability in Güralp FMUS series devices due to missing authentication in Telnet, allowing attackers to modify configurations, manipulate data, or reset devices.
AI Severity Critical
AI Vendor Güralp Systems
AI Product Güralp FMUS Series Seismic Monitoring Devices
AI Version All versions

Affected Products

  • Güralp Systems Güralp FMUS Series Seismic Monitoring Devices All versions

Additional Information

CWE List CWE-306
Source icscert

Description

Güralp FMUS series seismic monitoring devices expose an unauthenticated Telnet-based command line interface that could allow an attacker to modify hardware configurations, manipulate data, or factory reset the device.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.