Security Advisory

CVE-2025-57430

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-22 00:00:00

Last updated 2025-09-23 18:13:35

Assigner mitre

State PUBLISHED

Description

Creacast Creabox Manager 4.4.4 exposes sensitive configuration data via a publicly accessible endpoint /get. When accessed, this endpoint returns internal configuration including the creacodec.lua file, which contains plaintext admin credentials.

← Browse all CVEs View on cve.org ↗