High severity8.2NVD Advisory· Published Oct 17, 2017· Updated May 13, 2026

CVE-2017-9625

Description

An Improper Authentication issue was discovered in Envitech EnviDAS Ultimate Versions prior to v1.0.0.5. The web application lacks proper authentication which could allow an attacker to view information and modify settings or execute code remotely.

Affected products

Envitech/Envidas Ultimate
cpe:2.3:a:envitech:envidas_ultimate:*:*:*:*:*:*:*:*
Range: <=1.0.0.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/101249nvdThird Party AdvisoryVDB Entry
ics-cert.us-cert.gov/advisories/ICSA-17-285-03nvdThird Party AdvisoryUS Government ResourceVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.533
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000