Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-61234

EPSS 0.05% · P17
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-61234

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Incorrect access control on Dataphone A920 v2025.07.161103 exposes a service on port 8888 by default on the local network without authentication. This allows an attacker to interact with the device via a TCP socket without credentials. Additionally, sending an HTTP request to the service on port 8888 triggers an error in the response, which exposes the functionality, headers identifying Paytef dataphone packets, and the build version.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Dataphone A920 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Dataphone A920是美国Dataphone公司的一款POS机。 Dataphone A920 v2025.07.161103版本存在安全漏洞,该漏洞源于默认情况下在本地网络上暴露端口8888的服务且未进行身份验证,可能导致未经授权的设备交互和信息泄露。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2025-61234

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2025-61234

登录查看更多情报信息。

Same Patch Batch · n/a · 2025-10-29 · 13 CVEs total

CVE-2025-63622Code-Projects Online Complaint Site 安全漏洞
CVE-2025-61161Evope Collector 安全漏洞
CVE-2025-61429NCR Atleos Terminal Manager ConfigApp 安全漏洞
CVE-2025-61156ThreatFire System Monitor 安全漏洞
CVE-2024-45162Blu-Castle BCUM221E 安全漏洞
CVE-2024-45161Blu-Castle BCUM221E 安全漏洞
CVE-2025-60542TypeORM 安全漏洞
CVE-2025-60595SPH Engineering UgCS 安全漏洞
CVE-2025-60898Halo CMS 安全漏洞
CVE-2025-57227Kingo ROOT 安全漏洞
CVE-2025-60320memoQ 安全漏洞
CVE-2025-61876Inforcer Platform 安全漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2025-61234

No comments yet

Leave a comment