Vulnerability in Centralny Instytut Ochrony Pracy - Państwowy Badawczy Ster
CVE-2026-25608
STER uses unencrypted TCP traffic to transmit data over the network. It allows an attacker to conduct a Man-In-The-Middle attack and obtain sensitive data such as passwords, personal data, or authentication tokens. This issue was fixed i…
EPSS: 0.000 (9.4th percentile) — read the EPSS interpretation.
Affected products
Weakness classification (CWE)
References
- cvd@cert.pl (third-party-advisory)
- cvd@cert.pl (product)