Aquatronica Controller System <= 5.1.6 - Information Disclosure

Aquatronica Controller System firmware 5.1.6 and earlier and web interface 2.0 and earlier contain an information disclosure vulnerability caused by unauthenticated access to tcp.php endpoint, letting remote attackers retrieve sensitive configuration data including plaintext credentials, exploit...

CVE-2025-25037

An information disclosure vulnerability exists in Aquatronica Controller System firmware versions = 5.1.6 and web interface versions = 2.0. The tcp.php endpoint fails to restrict unauthenticated access, allowing remote attackers to issue crafted POST requests and retrieve sensitive configuration...

CVE-2025-25037 Aquatronica Controller System Complete Information Disclosure

An information disclosure vulnerability exists in Aquatronica Controller System firmware versions = 5.1.6 and web interface versions = 2.0. The tcp.php endpoint fails to restrict unauthenticated access, allowing remote attackers to issue crafted POST requests and retrieve sensitive configuration...

CVE-2025-25037

CVE-2025-25037 affects Aquatronica Controller System firmware versions ≤ 5.1.6 and web interface ≤ 2.0. The issue arises from unauthenticated access to the tcp.php endpoint, allowing remote attackers to issue crafted POST requests and retrieve sensitive configuration data, including plaintext adm...