CVE-2025-48981
HIGHDescription
An insecure implementation of the proprietary protocol DNET in Product CGM MEDICO allows attackers within the intranet to eavesdrop and manipulate data on the protocol because encryption is optional for this connection.
Is your site exposed to CVE-2025-48981?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
References
Frequently Asked Questions
What is CVE-2025-48981? +
How severe is CVE-2025-48981? +
How do I check if I'm vulnerable to CVE-2025-48981? +
Related Vulnerabilities
ToolHive is a utility designed to simplify the deployment and management of Model Context Protocol (MCP) servers. Due to the …
Lack of sensitive data encryption in CapillaryScope v2.5.0 of Capillary io, which stores both the proxy credentials and the JWT …
Encryption is missing on the configuration interface for Growatt ShineLan-X and MIC 3300TL-X. This allows an attacker with access to …
The Temporal api-go library prior to version 1.44.1 did not send `update response` information to Data Converter when the proxy …
Sensitive customer information is stored in the device without encryption.
Missing encryption of sensitive data in Korenix JetPort 5601v3 allows Eavesdropping.This issue affects JetPort 5601v3: through 1.2.