Medium severityNVD Advisory· Published Oct 23, 2025· Updated Apr 15, 2026
CVE-2025-34156
CVE-2025-34156
Description
Tibbo AggreGate Network Manager < 6.40.05 exposes sensitive system information through an unauthenticated endpoint at /cwmp/happyaxis.jsp. The page discloses Java system properties, server path details, and version information to unauthorized users, resulting in information disclosure that could aid further compromise.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <6.40.05
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.