CVE-2026-25608

Vulnerability Description

STER uses unencrypted TCP traffic to transmit data over the network. It allows an attacker to conduct a Man-In-The-Middle attack and obtain sensitive data such as passwords, personal data, or authentication tokens.

This issue was fixed in version 9.5.

Vulnerability Details

Published Date

May 22, 2026

Last Modified

May 22, 2026

CWE ID

CWE-319

Source

NVD

Vendor

Centralny Instytut Ochrony Pracy - Państwowy Instytut Badawczy

Product

STER

External References

https://cert.pl/posts/2026/05/CVE-2026-25606
https://www.ciop.pl/CIOPPortalWAR/appmanager/ciop/pl?_nfpb=true&_pageLabel=P52000165211572544981480

CVE-2026-25608

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment