Lucene search
K

The vulnerability in the web interface of the egOS operating system for Welotec industrial devices allows a perpetrator to bypass existing security mechanisms and gain unauthorized access to the device.

🗓️ 27 Aug 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 3 Views

The egOS web interface vulnerability enables security bypass by creating tokens from an encrypted key.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2025-41702
26 Aug 202507:23
circl
CNNVD
Welotec多款产品 安全漏洞
26 Aug 202500:00
cnnvd
CVE
CVE-2025-41702
26 Aug 202506:10
cve
Cvelist
CVE-2025-41702 egOS WebGUI Hard-Coded JWT Secret Enables Authentication Bypass
26 Aug 202506:10
cvelist
EUVD
EUVD-2025-25832
3 Oct 202520:07
euvd
NVD
CVE-2025-41702
26 Aug 202506:15
nvd
Positive Technologies
PT-2025-34744
25 Aug 202500:00
ptsecurity
RedhatCVE
CVE-2025-41702
30 Aug 202518:18
redhatcve
Vulnrichment
CVE-2025-41702 egOS WebGUI Hard-Coded JWT Secret Enables Authentication Bypass
26 Aug 202506:10
vulnrichment
Vulners
Node
welotec_gmbhegosRange<1.7.7
OR
welotec_gmbhegosRange<1.8.2

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

27 Aug 2025 00:00Current
5.8Medium risk
Vulners AI Score5.8
CVSS 39.8
CVSS 210
EPSS0.00491
3