cbcvebase.
CVE-2025-10641
published 2025-10-21

CVE-2025-10641: All WorkExaminer Professional traffic between monitoring client, console and server is transmitted as plain text. This allows an attacker with access to the…

PriorityP344high7.1CVSS 3.1
AVNACLPRLUINSUCHILAN
EPSS
0.30%
21.3th percentile
All WorkExaminer Professional traffic between monitoring client, console and server is transmitted as plain text. This allows an attacker with access to the network to read the transmitted sensitive data. An attacker can also freely modify the data on the wire. The monitoring clients transmit their data to the server using the unencrypted FTP. Clients connect to the FTP server on port 12304 and transmit the data unencrypted. In addition, all traffic between the console client and the server at port 12306 is unencrypted.

Affected

1 ranges
VendorProductVersion rangeFixed in
efficientlabworkexaminer_professional<= 4.0.0.52001
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.