How severe is CVE-2025-2910?

This vulnerability has a severity rating of MEDIUM with a CVSS score of N/A out of 10.

What type of vulnerability is CVE-2025-2910?

This is classified as CWE-204, which is a common weakness in software security.

CVE-2025-2910

MEDIUM Year: 2025

Weakness Type

CWE-204

View all →

Vulnerability Description

User enumeration in the password reset module of the MeetMe authentication service in versions prior to 2024-09 allows an attacker to determine whether an email address is registered through specific error messages.

CVE-2021-20049

HIGH

CVSS:7.5(High)

A vulnerability in SonicWall SMA100 password change API allows a remote unauthenticated attacker to perform SMA100 username enumeration based on the server responses. This vulnerability impacts 10.2.1...

CWE-2042021

CVE-2021-34580

HIGH

CVSS:7.5(High)

In mymbCONNECT24, mbCONNECT24 <= 2.9.0 an unauthenticated user can enumerate valid backend users by checking what kind of response the server sends for crafted invalid login attempts.

CWE-2042021

CVE-2024-24766

HIGH

CVSS:7.5(High)

CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, the Casa OS Login page disclosed the username enumeration vulnerability i...

CWE-2042024

CVE-2024-38322

HIGH

CVSS:7.5(High)

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 agent username and password error response discrepancy exposes product to brute force enumeration. IBM X-Force ID: 294869.

CWE-2042024