CVE & CISA-KEV Catalog

CVE-2025-41692

MEDIUM
6.8
CVSS v3
NVD

Description

A high privileged remote attacker with admin privileges for the webUI can brute-force the "root" and "user" passwords of the underlying OS due to a weak password generation algorithm.

How to fix

Remediation Available
fl nat 2008 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl nat 2208 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl nat 2304-2gc-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2005 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2008 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2008f firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2016 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2105 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2108 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2116 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2204-2tc-2sfx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2205 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2206-2fx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2206-2fx sm firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2206-2fx sm st firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2206-2fx st firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2206-2sfx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2206-2sfx pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2206c-2fx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2207-fx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2207-fx sm firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2208 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2208 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2208c firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2212-2tc-2sfx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2214-2fx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2214-2fx sm firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2214-2sfx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2214-2sfx pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2216 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2216 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2303-8sp1NVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2304-2gc-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2306-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2306-2sfp pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2308 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2308 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2312-2gc-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2314-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2314-2sfp pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2316\/k1 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2316 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2316 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2404-2tc-2sfx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2406-2sfx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2406-2sfx pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2408 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2408 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2412-2tc-2sfx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2414-2sfx firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2414-2sfx pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2416 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2416 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2504-2gc-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2506-2sfp\/k1 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2506-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2506-2sfp pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2508\/k1 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2508 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2508 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2512-2gc-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2514-2sfp firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2514-2sfp pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2516 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2516 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2608 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2608 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2708 firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD
fl switch 2708 pn firmwareNVD
Affected:< 3.50Fixed in:3.50CVE-2025-41692derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredHigh
User InteractionNone
ScopeChanged

Impact

ConfidentialityHigh
IntegrityNone
AvailabilityNone

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

Exploit Intelligence

0.25%probability of exploitation in 30 days
16thpercentile

Low risk: more likely to be exploited than 16% of all known CVEs.

References

Third-Party Advisory1
Embed a live status badge for CVE-2025-41692
CVE-2025-41692 severity badge

Markdown

[![CVE-2025-41692](https://tridentstack.com/cve/badge/CVE-2025-41692.svg)](https://tridentstack.com/cve/CVE-2025-41692)

HTML

<a href="https://tridentstack.com/cve/CVE-2025-41692"><img src="https://tridentstack.com/cve/badge/CVE-2025-41692.svg" alt="CVE-2025-41692"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-12-19.