CVE-2025-3895
published 2025-05-23CVE-2025-3895: Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value. It allows an…
PriorityP352critical9.1CVSS 4.0
AVNACLATPPRNUINVCHVIHVANSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.41%
32.9th percentile
Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value.
It allows an unauthenticated attacker who know user login names to brute force these tokens and change account passwords (including these belonging to administrators).
Version 5.20 of MegaBIP fixes this issue.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jan_syski | megabip | <= 5.19 | — |
| nodejs | undici | >= 0 < 5.29.0 | 5.29.0 |
| nodejs | undici | >= 6.0.0 < 6.21.2 | 6.21.2 |
| nodejs | undici | >= 7.0.0 < 7.5.0 | 7.5.0 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-f29p-fvxc-743q: Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value
ghsa_unreviewed·2025-05-23
CVE-2025-3895 [CRITICAL] CWE-334 GHSA-f29p-fvxc-743q: Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value
Token used for resetting passwords in MegaBIP software are generated using a small space of random values combined with a queryable value.
It allows an unauthenticated attacker who know user login names to brute force these tokens and change account passwords (including these belonging to administrators).
Version 5.20 of MegaBIP fixes this issue.
GHSA
undici Denial of Service attack via bad certificate data
ghsa·2025-05-15
CVE-2025-47279 [LOW] CWE-401 undici Denial of Service attack via bad certificate data
undici Denial of Service attack via bad certificate data
### Impact
Applications that use undici to implement a webhook-like system are vulnerable. If the attacker set up a server with an invalid certificate, and they can force the application to call the webhook repeatedly, then they can cause a memory leak.
### Patches
This has been patched in https://github.com/nodejs/undici/pull/4088.
### Workarounds
If a webhook fails, avoid keep calling it repeatedly.
### References
Reported as: https://github.com/nodejs/undici/issues/3895
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-05-23
Published