What is CVE-2026-25600?

CVE-2026-25600 is a medium-severity vulnerability in Trac D.o.o. Pdbm, classified under Use of Hard-coded Credentials. CVSS score: 6.4/10. Published 2026-06-01.

How severe is CVE-2026-25600?

Medium severity. CVSS v3 base score is 6.4 out of 10.

Vulnerability in Trac D.o.o. Pdbm

CVE-2026-25600

The PDBM application relies on a static, hard‑coded secret embedded in the PDBM.exe executable. This secret is used by the application’s encryption routines, including the function responsible for decrypting credentials stored in the pr…

EPSS: 0.000 (0.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.4 (Medium). Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Trac D.o.o. Pdbm — versions 0

Weakness classification (CWE)

CWE-798 — Use of Hard-coded Credentials

References

a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (third-party-advisory)

Frequently asked questions

What is CVE-2026-25600?: CVE-2026-25600 is a medium-severity vulnerability in Trac D.o.o. Pdbm, classified under Use of Hard-coded Credentials. CVSS score: 6.4/10. Published 2026-06-01.
How severe is CVE-2026-25600?: Medium severity. CVSS v3 base score is 6.4 out of 10.