CVE-2025-2189 – Tinxy Smart Devices PlainText Credentials Disclosure

March 11, 2025
1:18 pm

CVE ID : CVE-2025-2189

Published : March 11, 2025, 12:15 p.m. | 26 minutes ago

Description : This vulnerability exists in the Tinxy smart devices due to storage of credentials in plaintext within the device firmware. An attacker with physical access could exploit this by extracting the firmware and analyzing the binary data to obtain the plaintext credentials stored on the vulnerable device.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-2189 – Tinxy Smart Devices PlainText Credentials Disclosure

Elvescore.io

Recent Posts

CVE-2025-2192 – Stoque Zeev.it Open Redirect Vulnerability

CVE-2025-2193 – MarkerCMS Remote File Traversal Vulnerability

CVE-2024-12546 – EDK2 BIOS Integer Overflow Denial of Service

CVE-2024-54084 – APTIOV BIOS TOCTOU Race Condition Arbitrary Code Execution

CVE-2024-54085 – AMI SPx BMC Redfish Host Interface Authentication Bypass

CVE-2025-22366 – Mennekes Smart/Premium Chargingpoints OS Command Injection

CVE-2025-2189 – Tinxy Smart Devices PlainText Credentials Disclosure

CVE-2025-2189 – Tinxy Smart Devices PlainText Credentials Disclosure