CVE-2025-41438CRITICAL 9.8EPSS p48.0%

CVE-2025-41438CVE-2025-41438

Description

The CS5000 Fire Panel is vulnerable due to a default account that exists on the panel. Even though it is possible to change this by SSHing into the device, it has remained unchanged on every installed system observed. This account is not root but holds high-level permissions that could severely impact the device's operation if exploited.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.69% probability of exploitation · percentile 48.0% · 2026-06-19T12:03:05Z
Published2025-05-30
Last modified2026-04-15

Underlying weaknesses· 1

CWE-1188

References

  1. https://www.cisa.gov/news-events/ics-advisories/icsa-25-148-03
  2. https://www.consiliumsafety.com/en/support/

1

TypeTargetConfidenceTier
WeaknessInitialization of a Resource with an Insecure Defaultcwe-11880%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-46352
CVE
CyberPanel Incorrect Default Permissions Vulnerability
CVE
CVE-2025-41656
CVE
CVE-2025-41651
CVE
CVE-2025-43982
CVE
CVE-2025-1960
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.