Vulnerability in Ysoft Safeq 6

CVE-2025-13175

Y Soft SafeQ 6 renders the Workflow Connector password field in a way that allows an administrator with UI access to reveal the value using browser developer/inspection tools. The affected customers are only those with a password-protected…

EPSS: 0.001 (20.4th percentile) — read the EPSS interpretation.

Affected products

Ysoft Safeq 6 — versions 0

Weakness classification (CWE)

CWE-549

References

www.ysoft.com/safeq (product)
docs.ysoft.cloud/safeq6/latest/safeq6/release-notes-build-106 (release-notes)
cert.pl/en/posts/2026/01/CVE-2025-13175 (third-party-advisory)