{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-12T05:06:57.239","vulnerabilities":[{"cve":{"id":"CVE-2025-25061","sourceIdentifier":"vultures@jpcert.or.jp","published":"2025-04-04T02:15:17.910","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Unintended proxy or intermediary ('Confused Deputy') issue exists in HMI ViewJet C-more series and HMI GC-A2 series, which may allow a remote unauthenticated attacker to use the product as an intermediary for FTP bounce attack."},{"lang":"es","value":"Existe un problema de proxy o intermediario no deseado ('Confused Deputy') en las series HMI ViewJet C-more y HMI GC-A2, que puede permitir que un atacante remoto no autenticado use el producto como intermediario para un ataque de rebote de FTP."}],"metrics":{"cvssMetricV30":[{"source":"vultures@jpcert.or.jp","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N","baseScore":5.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"vultures@jpcert.or.jp","type":"Secondary","description":[{"lang":"en","value":"CWE-441"}]}],"references":[{"url":"https://jvn.jp/en/jp/JVN17260367/","source":"vultures@jpcert.or.jp"},{"url":"https://www.electronics.jtekt.co.jp/en/topics/202503207269/","source":"vultures@jpcert.or.jp"},{"url":"https://www.electronics.jtekt.co.jp/en/topics/202503207271/","source":"vultures@jpcert.or.jp"}]}}]}