CVE-2025-3895
CVE-2025-3895 is a critical-severity vulnerability with a CVSS 4.0 base score of 9.1. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-334.
Key facts
- Severity: Critical (CVSS 4.0 base score 9.1)
- EPSS exploit prediction: 0% (33rd percentile)
- Actively exploited: Not listed in CISA KEV
- EU (EUVD) id: EUVD-2025-27942
- Weakness: CWE-334
- Published:
- Last modified:
Description
Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value. It allows an unauthenticated attacker who know user login names to brute force these tokens and change account passwords (including these belonging to administrators). Version 5.20 of MegaBIP fixes this issue.
Frequently asked questions
- What is CVE-2025-3895?
- Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value. It allows an unauthenticated attacker who know user login names to brute force these tokens and change account passwords (including these belonging to administrators). Version 5.20 of MegaBIP fixes this issue.
- How severe is CVE-2025-3895?
- CVE-2025-3895 has a CVSS 4.0 base score of 9.1, rated critical severity.
- Is CVE-2025-3895 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (33rd percentile), an estimate of the probability of exploitation in the next 30 days.
- How do I fix CVE-2025-3895?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its critical severity, prioritise patching exposed systems.
- Does CVE-2025-3895 have an EU (EUVD) identifier?
- Yes. CVE-2025-3895 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2025-27942.
- When was CVE-2025-3895 published?
- CVE-2025-3895 was published on 2025-05-23 and last updated on 2026-06-17.
References
- https://cert.pl/en/posts/2025/05/CVE-2025-3893
- https://megabip.pl/index.php?id=24,145
- https://www.gov.pl/web/cyfryzacja/rekomendacja-pelnomocnika-rzadu-ds-cyberbezpieczenstwa-dotyczaca-biuletynow-informacji-publicznej
Other CWE-334 vulnerabilities
- CVE-2020-7566 — High (CVSS 7.3): A CWE-334: Small Space of Random Values vulnerability exists in Modicon M221 (all references, all versions) that could…
- CVE-2023-6951 — Medium (CVSS 6.6): A Use of Weak Credentials vulnerability affecting the Wi-Fi network generated by a set of DJI drones could allow a…
- CVE-2024-54017 — Medium (CVSS 5.3): A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V11.0), SIPROTEC 5 6MD85 (CP200) (All…
- CVE-2024-52616 — Medium (CVSS 5.3): A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup,…