CVE-2025-22492

Published Feb 28, 2025

Last updated a month ago

CVSS medium 6.3

Overview

Description
The connection string visible to users with access to FRSCore database on Foreseer Reporting Software (FRS) VM, this string can be used for gaining administrative access to the 4crXref database. This vulnerability has been resolved in the latest version 1.5.100 of FRS.
Source
CybersecurityCOE@eaton.com
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.3
Impact score
5.5
Exploitability score
0.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
Severity
MEDIUM

Weaknesses

CybersecurityCOE@eaton.com
CWE-922

Social media

Hype score
Not currently trending

  1. ๐Ÿšจ CVE-2025-22492 ๐ŸŸ  MEDIUM (6.3) ๐Ÿข Eaton - Foreseer Reporting Software (FRS) ๐Ÿ—๏ธ 0 ๐Ÿ”— https://t.co/jiH9DXYjec #CyberCron #VulnAlert https://t.co/jwHuhCR1HD

    @cybercronai

    28 Feb 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References