CVE-2025-0681
CVE-2025-0681 is a medium-severity vulnerability with a CVSS 3.x base score of 6.2. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-155.
Key facts
- Severity: Medium (CVSS 3.x base score 6.2)
- CVSS v4: 6.9
- EPSS exploit prediction: 0% (7th percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-1813
- Weakness: CWE-155
- Published:
- Last modified:
Description
The Cloud MQTT service of the affected products supports wildcard topic subscription which could allow an attacker to obtain sensitive information from tapping the service communications.
Frequently asked questions
- What is CVE-2025-0681?
- The Cloud MQTT service of the affected products supports wildcard topic subscription which could allow an attacker to obtain sensitive information from tapping the service communications.
- How severe is CVE-2025-0681?
- CVE-2025-0681 has a CVSS 3.x base score of 6.2, rated medium severity. It is exploitable over local access with low attack complexity, requires no privileges and no user interaction. Impact on confidentiality is high, integrity none, and availability none.
- Is CVE-2025-0681 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (7th percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2025-0681?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- Does CVE-2025-0681 have an EU (EUVD) identifier?
- Yes. CVE-2025-0681 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-1813.
- When was CVE-2025-0681 published?
- CVE-2025-0681 was published on 2025-01-30 and last updated on 2026-06-17.
References
- https://www.cisa.gov/news-events/ics-advisories/icsa-25-030-02
- https://www.newrocktech.com/ContactUs/index.html
Other CWE-155 vulnerabilities
- CVE-2025-27515 — Critical (CVSS 9.8): Laravel is a web application framework. When using wildcard validation to validate a given file or image field…
- CVE-2025-4232 — High (CVSS 8.8): An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks…
- CVE-2025-11757 — High (CVSS 8.7): The CloudEdge Cloud does not sanitize the MQTT topic input, which could allow an attacker to leverage the MQTT wildcard…
- CVE-2024-47791 — High (CVSS 7.5): Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow an attacker to subscribe to partial…
- CVE-2025-24376 — Medium (CVSS 6.5): kubewarden-controller is a Kubernetes controller that allows you to dynamically register Kubewarden admission policies.…
- CVE-2024-6509 — Medium (CVSS 6.5): Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API alwaysmulti.cgi was vulnerable for…