CVE-2025-8284CRITICAL 9.8EPSS p39.2%

CVE-2025-8284CVE-2025-8284

Description

By default, the Packet Power Monitoring and Control Web Interface do not enforce authentication mechanisms. This vulnerability could allow unauthorized users to access and manipulate monitoring and control functions.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.51% probability of exploitation · percentile 39.2% · 2026-06-19T12:03:05Z
Published2025-08-08
Last modified2026-04-15

Underlying weaknesses· 1

CWE-306

References

  1. https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-05

1

TypeTargetConfidenceTier
WeaknessMissing Authentication for Critical Functioncwe-3060%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-41651
CVE
CVE-2025-48466
CVE
CVE-2026-25715
CVE
CVE-2025-3090
CVE
CVE-2025-40805
CVE
CVE-2025-3499
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.