CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2025-25749: An issue in HotelDruid version 3.0.7 and earlier allows users to set weak passwords due to the lack of enforcement of password strength policies.
Description
An issue in HotelDruid version 3.0.7 and earlier allows users to set weak passwords due to the lack of enforcement of password strength policies.
Classification
CVE ID: CVE-2025-25749
Affected Products
Vendor: n/a
Product: n/a
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 9.66% (scored less or equal to compared to others)
EPSS Date: 2025-04-09 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-25749https://www.huyvo.net/post/cve-2025-25749-weak-password-policy-in-hoteldruid-3-0-7