Vulnerability in Contec Co.,ltd. Conprosys Hmi System (Chs)

CVE-2025-34081

The Contec Co.,Ltd. CONPROSYS HMI System (CHS) exposes a PHP phpinfo() debug page to unauthenticated users that may contain sensitive data useful for an attacker.This issue affects CONPROSYS HMI System (CHS): before 3.7.7.

EPSS: 0.004 (60.2th percentile) — read the EPSS interpretation.

Affected products

Contec Co.,ltd. Conprosys Hmi System (Chs) — versions 0

Weakness classification (CWE)

CWE-215 — Insertion of Sensitive Information Into Debugging Code

References

jvn.jp/en/vu/JVNVU92266386/ (third-party-advisory)
www.vulncheck.com/advisories/conprosys-hmi-system-exposed-php-debug-info (third-party-advisory)