Unauthenticated Access Vulnerability in Vendor's Device
CVE-2025-41689

5.3MEDIUM

Key Information:

Vendor: Wiesemann & Theis
Status: Motherbox 3
Vendor: CVE Published:; 19 August 2025

🔔 Create Wiesemann & Theis Vulnerability Alert

What is CVE-2025-41689?

An unauthenticated remote attacker can exploit a vulnerability in the affected device to bypass password protections, allowing unprotected read-only access to sensitive stored measurement data. This flaw presents a significant risk, as it enables unauthorized users to retrieve potentially confidential information without any prior authentication.

Affected Version(s)

Motherbox 3 1.44 <= 1.48

References

https://certvde.com/en/advisories/VDE-2025-067

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2025
Vulnerability Reserved
Apr 16, 2025