{"vulnerability": "CVE-2025-2858", "sightings": [{"uuid": "c2d1a140-3ba1-4712-978b-7a9bd9e1958a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2858", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9343", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2858\n\ud83d\udd25 CVSS Score: 8.5 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:N/SA:L)\n\ud83d\udd39 Description: Privilege escalation vulnerability in the saTECH BCU firmware version 2.1.3. An attacker with access to the CLI of the device could make use of the nice command to bypass all restrictions and elevate privileges as a superuser.\n\ud83d\udccf Published: 2025-03-28T13:08:23.567Z\n\ud83d\udccf Modified: 2025-03-28T13:08:23.567Z\n\ud83d\udd17 References:\n1. https://www.incibe.es/en/incibe-cert/notices/aviso-sci/multiple-vulnerabilities-arteches-satech-bcu", "creation_timestamp": "2025-03-28T13:27:56.000000Z"}]}