{"vulnerability": "CVE-2025-2556", "sightings": [{"uuid": "35549115-c270-4ced-808e-1c452441c335", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25568", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk7cpudimi2n", "content": "", "creation_timestamp": "2025-03-12T19:25:41.094414Z"}, {"uuid": "bbcf8e49-5fc5-4a3d-b7f7-5f534d881ff4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25565", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk7cpuptxu2s", "content": "", "creation_timestamp": "2025-03-12T19:25:42.913942Z"}, {"uuid": "b0476436-73a5-4576-a026-b1de227a636b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2556", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lktlxaxcgc26", "content": "", "creation_timestamp": "2025-03-20T21:04:10.004695Z"}, {"uuid": "0a46ca3d-bebd-4e94-a9e6-71f9d7d9dba1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25568", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:34.000000Z"}, {"uuid": "b6e432b1-daca-4039-a6b6-55c3dbadce1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2556", "type": "seen", "source": "https://t.me/cvedetector/20765", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2556 - \"Audi UTR Dashcam 2.0 Hard-Coded Credentials Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-2556 \nPublished : March 20, 2025, 6:15 p.m. | 1\u00a0hour, 59\u00a0minutes ago \nDescription : A vulnerability classified as problematic was found in Audi UTR Dashcam 2.0. Affected by this vulnerability is an unknown functionality of the component Video Stream Handler. The manipulation leads to hard-coded credentials. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. Upgrading to version 2.89 and 2.90 is able to address this issue. It is recommended to upgrade the affected component. The vendor was contacted early about these issues and acted very professional. Version 2.89 is fixing this issue for new customers and 2.90 is going to fix it for existing customers. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-20T21:35:06.000000Z"}, {"uuid": "c13fc895-43b1-46a5-a481-701079d2e39c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25565", "type": "seen", "source": "https://t.me/cvedetector/20156", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25565 - SoftEther VPN Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25565 \nPublished : March 12, 2025, 4:15 p.m. | 2\u00a0hours, 58\u00a0minutes ago \nDescription : SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert and PtMakeCert2048 functions. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-12T20:23:08.000000Z"}, {"uuid": "6a1ab44b-f452-42a8-bb59-2fd7472bbf0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25566", "type": "seen", "source": "https://t.me/cvedetector/20157", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25566 - SoftEtherVPN Memory Leak Denial of Service\", \n  \"Content\": \"CVE ID : CVE-2025-25566 \nPublished : March 12, 2025, 4:15 p.m. | 2\u00a0hours, 58\u00a0minutes ago \nDescription : Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc function. \nSeverity: 5.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-12T20:23:09.000000Z"}, {"uuid": "33159d6b-4f98-42c9-8f63-e2c230b1f9c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25568", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7318", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25568\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function.\n\ud83d\udccf Published: 2025-03-12T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-12T15:36:55.709Z\n\ud83d\udd17 References:\n1. https://lzydry.github.io/CVE-2025-25568/", "creation_timestamp": "2025-03-12T15:40:47.000000Z"}, {"uuid": "2a4fa8d5-b885-4de2-8476-06b36463d6c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25567", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7321", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25567\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in Internat.c via the UniToStrForSingleChars function.\n\ud83d\udccf Published: 2025-03-12T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-12T15:33:37.132Z\n\ud83d\udd17 References:\n1. https://lzydry.github.io/CVE-2025-25567/", "creation_timestamp": "2025-03-12T15:40:49.000000Z"}, {"uuid": "f8d3bfe2-0a41-4586-a1b2-eb35f3a0f78f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25568", "type": "seen", "source": "https://t.me/cvedetector/20159", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25568 - SoftEtherVPN Use After Free Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2025-25568 \nPublished : March 12, 2025, 4:15 p.m. | 2\u00a0hours, 58\u00a0minutes ago \nDescription : SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-12T20:23:11.000000Z"}, {"uuid": "a8accdfc-57f8-4468-b372-f5a9c6cf355d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25567", "type": "seen", "source": "https://t.me/cvedetector/20158", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25567 - SoftEther VPN Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25567 \nPublished : March 12, 2025, 4:15 p.m. | 2\u00a0hours, 58\u00a0minutes ago \nDescription : SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in Internat.c via the UniToStrForSingleChars function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-12T20:23:10.000000Z"}, {"uuid": "e29d8cd8-e02d-407c-83b5-615beb4c646d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2556", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8249", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2556\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability classified as problematic was found in Audi UTR Dashcam 2.0. Affected by this vulnerability is an unknown functionality of the component Video Stream Handler. The manipulation leads to hard-coded credentials. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. Upgrading to version 2.89 and 2.90 is able to address this issue. It is recommended to upgrade the affected component. The vendor was contacted early about these issues and acted very professional. Version 2.89 is fixing this issue for new customers and 2.90 is going to fix it for existing customers.\n\ud83d\udccf Published: 2025-03-20T18:00:08.572Z\n\ud83d\udccf Modified: 2025-03-20T18:00:08.572Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.300169\n2. https://vuldb.com/?ctiid.300169\n3. https://vuldb.com/?submit.513392\n4. https://github.com/geo-chen/Audi/blob/main/README.md#finding-3-rtsp-and-ftp-wide-open", "creation_timestamp": "2025-03-20T18:20:46.000000Z"}, {"uuid": "96a888bb-1728-4687-9c58-6807ff142777", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-25565", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8128", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25565\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert and PtMakeCert2048 functions.\n\ud83d\udccf Published: 2025-03-12T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-19T18:57:37.047Z\n\ud83d\udd17 References:\n1. https://lzydry.github.io/CVE-2025-25565/", "creation_timestamp": "2025-03-19T19:18:22.000000Z"}]}