- Description
- A serial interface can be accessed with physical access to the PCB of Wattsense Bridge devices. After connecting to the interface, access to the bootloader is possible, as well as a Linux login prompt. The bootloader access can be used to gain a root shell on the device. This issue is fixed in recent firmware versions BSP >= 6.4.1.
- Source
- 551230f0-3615-47bd-b7cc-93e92e730bbf
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 6.8
- Impact score
- 5.9
- Exploitability score
- 0.9
- Vector string
- CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- MEDIUM
- Hype score
- Not currently trending
🚨 CVE-2025-26409 🟠 MEDIUM (6.8) 🏢 Wattsense - Wattsense Bridge 🏗️ 0 🔗 https://t.co/FwEMV8ouIu 🔗 https://t.co/fskH79VT0t #CyberCron #VulnAlert https://t.co/6fQQhtUIA3
@cybercronai
11 Feb 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-26409 A serial interface can be accessed with physical access to the PCB of Wattsense Bridge devices. After connecting to the interface, access to the bootloader is possibl… https://t.co/paI5bfhPWz
@CVEnew
11 Feb 2025
205 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes