{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T04:11:38.669","vulnerabilities":[{"cve":{"id":"CVE-2025-41257","sourceIdentifier":"1e3a9e0f-5156-4bf8-b8a3-cc311bfc0f4a","published":"2026-03-04T23:16:09.713","lastModified":"2026-03-09T21:16:10.490","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Suprema’s BioStar 2 in version 2.9.11.6 allows users to set new password without providing the current one. Exploiting this flaw combined with other vulnerabilities can lead to unauthorized account access and potential system compromise."},{"lang":"es","value":"BioStar 2 de Suprema en la versión 2.9.11.6 permite a los usuarios establecer una nueva contraseña sin proporcionar la actual. Explotar esta falla combinado con otras vulnerabilidades puede llevar a un acceso no autorizado a la cuenta y un posible compromiso del sistema."}],"metrics":{"cvssMetricV31":[{"source":"1e3a9e0f-5156-4bf8-b8a3-cc311bfc0f4a","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":4.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.2,"impactScore":2.5}]},"weaknesses":[{"source":"1e3a9e0f-5156-4bf8-b8a3-cc311bfc0f4a","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"references":[{"url":"https://github.com/sbaresearch/advisories/tree/public/2025/SBA-ADV-20251104-02_Suprema_BioStar_2_Insecure_Password_Change","source":"1e3a9e0f-5156-4bf8-b8a3-cc311bfc0f4a"},{"url":"https://www.supremainc.com/en/platform/hybrid-security-platform-biostar-2.asp","source":"1e3a9e0f-5156-4bf8-b8a3-cc311bfc0f4a"},{"url":"https://github.com/sbaresearch/advisories/tree/public/2025/SBA-ADV-20251104-02_Suprema_BioStar_2_Insecure_Password_Change","source":"134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}}]}