Vulnerability Details CVE-2025-56764
Trivision NC-227WF firmware 5.80 (build 20141010) login mechanism reveals whether a username exists or not by returning different error messages ("Unknown user" vs. "Wrong password"), allowing an attacker to enumerate valid usernames.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.9%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2025-56764
-
cpe:2.3:h:trivisionsecurity:trivision_nc-227wf:-
-
cpe:2.3:o:trivisionsecurity:trivision_nc-227wf_firmware:5.80