| Advisory
Products
MOOLE SCA
Continuous visibility into open-source risk
MOOLE Container Security
End-to-end container defense across the SDLC
MOOLE SAST
Static application security testing for source code
About Us
CVE-2025-62775
Vulnerability Database
CVE-2025-62775
Base Score
HIGH
8
CVE-2025-62775
Mercku M6a devices through 2.1.0 allow root TELNET logins via the web admin password.
Vector
ADJACENT_NETWORK
Published By
cve@mitre.org
Published Date
Oct 22, 2025, 04:16
Weakness Type (CWE)
:
CWE-669
CVSS Metrics
CVSS v3.1
Base Score
8
Vector String
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Severity
HIGH
Version
3.1
Attack Vector (AV)
ADJACENT_NETWORK
Attack Complexity (AC)
LOW
Privileges Required (PR)
LOW
User Interaction (UI)
NONE
Scope (S)
UNCHANGED
Confidentiality (C)
HIGH
Integrity (I)
HIGH
Availability (A)
HIGH
References
https://blog.nullvoid.me/posts/mercku-exploits/
https://seclists.org/fulldisclosure/2025/Oct/10
Base Score
HIGH
8
Weakness Type (CWE)
:
CWE-669
CVSS Metrics
CVSS v3.1
Base Score
8
Vector String
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Severity
HIGH
Version
3.1
Attack Vector (AV)
ADJACENT_NETWORK
Attack Complexity (AC)
LOW
Privileges Required (PR)
LOW
User Interaction (UI)
NONE
Scope (S)
UNCHANGED
Confidentiality (C)
HIGH
Integrity (I)
HIGH
Availability (A)
HIGH
