Medium severityNVD Advisory· Published Oct 23, 2025· Updated Apr 15, 2026
CVE-2025-34155
CVE-2025-34155
Description
Tibbo AggreGate Network Manager < 6.40.05 contains an observable response discrepancy in its login functionality. Authentication failure messages differ based on whether a supplied username exists or not, allowing an unauthenticated remote attacker to infer valid account identifiers. This can facilitate user enumeration and increase the likelihood of targeted brute-force or credential-stuffing attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <6.40.05
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.