CVEDB API

Due to webserver misconfiguration an unauthenticated remote attacker is able to read the source of php modules.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 15.5%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2025-41737

Metz-Connect » Ewio2-Bm » Version: N/A

cpe:2.3:h:metz-connect:ewio2-bm:-
Metz-Connect » Ewio2-M-Bm » Version: N/A

cpe:2.3:h:metz-connect:ewio2-m-bm:-
Metz-Connect » Ewio2-M » Version: N/A

cpe:2.3:h:metz-connect:ewio2-m:-
Metz-Connect » Ewio2-Bm Firmware » Version: Any

cpe:2.3:o:metz-connect:ewio2-bm_firmware:*
Metz-Connect » Ewio2-M-Bm Firmware » Version: Any

cpe:2.3:o:metz-connect:ewio2-m-bm_firmware:*
Metz-Connect » Ewio2-M Firmware » Version: Any

cpe:2.3:o:metz-connect:ewio2-m_firmware:*