Low severityNVD Advisory· Published May 5, 2025· Updated Apr 15, 2026

CVE-2025-2545

Description

Vulnerability in Best Practical Solutions, LLC's Request Tracker prior to v5.0.8, where the Triple DES (3DES) cryptographic algorithm is used to protect emails sent with S/MIME encryption. Triple DES is considered obsolete and insecure due to its susceptibility to birthday attacks, which could compromise the confidentiality of encrypted messages.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

docs.bestpractical.com/release-notes/rt/4.4.8nvd
docs.bestpractical.com/release-notes/rt/5.0.8nvd
lists.debian.org/debian-lts-announce/2025/05/msg00009.htmlnvd
www.incibe.es/en/incibe-cert/notices/aviso/cryptographic-algorithm-not-recommended-request-tracker-best-practicalnvd

News mentions

No linked articles in our index yet.

cvss	0.065
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000