Unrated severityNVD Advisory· Published Nov 19, 2025· Updated Feb 3, 2026

CVE-2025-63205

Description

An issue was discovered in bridgetech probes VB220 IP Network Probe,VB120 Embedded IP + RF Probe, VB330 High-Capacity Probe, VB440 ST 2110 Production Analytics Probe, and NOMAD, firmware versions 6.5.0-9, allowing attackers to gain sensitive information such as administrator passwords via the /probe/core/setup/passwd endpoint. NOTE: the Supplier disagrees that 6.5.0-9 is affected, and instead reports that 5.6.0-3 and earlier are affected, and 5.6.0-4 (2020-09-21) and later are fixed.

Affected products

bridgetech/IP Network Probe, Embedded IP + RF Probe, High-Capacity Probe, ST 2110 Production Analytics Probe, NOMADdescription
bridgetech/VB220 IP Network Probellm-create
Range: <=6.5.0-9
bridgetech/VB120 Embedded IP + RF Probellm-create
Range: <=6.5.0-9
bridgetech/VB330 High-Capacity Probellm-create
Range: <=6.5.0-9
bridgetech/VB440 ST 2110 Production Analytics Probellm-create
Range: <=6.5.0-9
Hashicorp/Nomadllm-fuzzy
Range: <=6.5.0-9

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000