CVE-2025-55443

Telpo MDM 1.4.6 thru 1.4.9 for Android contains sensitive administrator credentials and MQTT server connection details (IP/port) that are stored in plaintext within log files on the device's external storage. This allows attackers with access to these logs to: 1. Authenticate to the MDM web platform to execute administrative operations (device shutdown/factory reset/software installation); 2. Connect to the MQTT server to intercept/publish device data.

CVSS v3 9.1 CRITICAL

9.1^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://gist.github.com/raiji1n/a2ce5dd46c312e3bd38b9b2446b95860

Configurations

No configuration.

History

27 Aug 2025, 14:15

Type	Values Removed	Values Added
CWE		CWE-312
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.1
Summary		(es) Telpo MDM 1.4.6 a 1.4.9 para Android contiene credenciales de administrador confidenciales y detalles de conexión al servidor MQTT (IP/puerto) que se almacenan en texto plano en archivos de registro en el almacenamiento externo del dispositivo. Esto permite a los atacantes con acceso a estos registros: 1. Autenticarse en la plataforma web MDM para ejecutar operaciones administrativas (apagado del dispositivo, restablecimiento de fábrica e instalación de software); 2. Conectarse al servidor MQTT para interceptar y publicar datos del dispositivo.

26 Aug 2025, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-26 20:15

Updated : 2025-08-29 16:22

NVD link : CVE-2025-55443

Mitre link : CVE-2025-55443

CVE.ORG link : CVE-2025-55443

JSON object : View

Products Affected

No product.

CWE

CWE-312

Cleartext Storage of Sensitive Information

9.1 /10