Vulnerability Database

315,363

Total vulnerabilities in the database

CVE-2025-25613

FS Inc S3150-8T2F 8-Port Gigabit Ethernet L2+ Switch, 8 x Gigabit RJ45, with 2 x 1Gb SFP, Fanless. All versions before 2.2.0D Build 135103 were discovered to transmit cookies for their web based administrative application containing usernames and passwords. These were transmitted in cleartext using simple base64 encoding during every POST request made to the server.

Published: Nov 20, 2025
Updated: Nov 22, 2025
CVE: CVE-2025-25613
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-539
CWE-312

OWASP TOP 10:

A3 - Sensitive Data Exposure

Affected Software
References

No affected software listed.

http://fs.com
http://s3150-8t2f.com
https://github.com/SwiftSecur/S3150-8T2F-FS.com-Research/wiki

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo