CVE-2025-51055HIGH 8.6EPSS p20.4%

CVE-2025-51055CVE-2025-51055

Description

Insecure Data Storage of credentials has been found in /api_vedo/configuration/config.yml file in Vedo Suite version 2024.17. This file contains clear-text credentials, secret keys, and database information.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
EPSS0.29% probability of exploitation · percentile 20.4% · 2026-06-18T12:00:27Z
Published2025-08-06
Last modified2025-10-09

Underlying weaknesses· 1

CWE-312

References

  1. http://bottinelli.com
  2. https://github.com/jacopoaugelli/vedo-suite-exploits

1

TypeTargetConfidenceTier
WeaknessCleartext Storage of Sensitive Informationcwe-3120%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-51056
CVE
CVE-2025-25570
CVE
CVE-2025-52164
CVE
CVE-2025-52856
CVE
CVE-2025-52159
CVE
CVE-2025-56577
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.