CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Grahampugh: >> Erase-Install Security Vulnerabilities

CVE-2025-70342

erase-install prior to v40.4 commit 2c31239 writes swiftDialog credential output to a hardcoded path /var/tmp/dialog.json. This allows an unauthenticated attacker to intercept admin credentials entered during reinstall/erase operations via creating a named pipe.

CVSS Score

6.6

EPSS Score

0.0

Published

2026-03-04

Page 1

Vulnerabilities

Vulnerable Software

Grahampugh: >> Erase-Install Security Vulnerabilities

Products

Pricing

Contact Us