CVE-2025-4527: Dígitro NGC Explorer Password Transmission client-side enforcement of server-side security
First published: Sun May 11 2025(Updated: )
A vulnerability has been found in Dígitro NGC Explorer 3.44.15 and classified as problematic. This vulnerability affects unknown code of the component Password Transmission Handler. The manipulation leads to client-side enforcement of server-side security. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dígitro NGC Explorer |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-4527?
CVE-2025-4527 is classified as a problematic vulnerability.
How do I fix CVE-2025-4527?
To fix CVE-2025-4527, it is recommended to update to a patched version of Dígitro NGC Explorer.
What component is affected by CVE-2025-4527?
CVE-2025-4527 affects the Password Transmission Handler component of Dígitro NGC Explorer.
What type of vulnerability is CVE-2025-4527?
CVE-2025-4527 involves client-side enforcement of server-side security.
Which software versions are impacted by CVE-2025-4527?
CVE-2025-4527 impacts the Dígitro NGC Explorer version 3.44.15.
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/references
- agent/title
- agent/type
- agent/first-publish-date
- agent/description
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/severity
- agent/author
- agent/last-modified-date
- agent/event
- collector/epss-latest
- source/FIRST
- agent/source
- agent/tags
- agent/epss
- vendor/dígitro
- canonical/dígitro ngc explorer