CVE-2025-0417

Published Apr 1, 2025

Last updated 4 days ago

CVSS high 7.0

Overview

Description
Lack of protection against brute force attacks in Valmet DNA visualization in DNA Operate. The possibility to make an arbitrary number of login attempts without any rate limit gives an attacker an increased chance of guessing passwords and then performing switching operations.
Source
db4dfee8-a97e-4877-bfae-eba6d14a2166
NVD status
Awaiting Analysis

Risk scores

CVSS 4.0

Type
Secondary
Base score
7
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:D/RE:L/U:Green
Severity
HIGH

Weaknesses

db4dfee8-a97e-4877-bfae-eba6d14a2166
CWE-307

Social media

Hype score
Not currently trending

  1. CVE-2025-0417 Lack of protection against brute force attacks in Valmet DNA visualization in DNA Operate. The possibility to make an arbitrary number of login attempts without any rat… https://t.co/7qfdPqUIKN

    @CVEnew

    1 Apr 2025

    214 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References