CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-10227

Missing Encryption of Sensitive Data (CWE-311) in the Object Archive component in AxxonSoft Axxon One (C-Werk) before 2.0.8 on Windows and Linux allows a local attacker with access to exported storage or stolen physical drives to extract sensitive archive data in plaintext via lack of encryption at rest.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 0.4%

CVSS Severity

CVSS v3 Score 4.6

References

https://www.axxonsoft.com/legal/axxonsoft-vulnerability-disclosure-policy/security-advisories

Products affected by CVE-2025-10227

Axxonsoft » Axxon One » Version: 2.0.0

cpe:2.3:a:axxonsoft:axxon_one:2.0.0
Axxonsoft » Axxon One » Version: 2.0.1

cpe:2.3:a:axxonsoft:axxon_one:2.0.1
Axxonsoft » Axxon One » Version: 2.0.2

cpe:2.3:a:axxonsoft:axxon_one:2.0.2
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-10227

Products

Pricing

Contact Us