CVE-2025-10542
CRITICALiMonitor EAM 9.63.94 - Use of Default Credentials
Title source: llmDescription
iMonitor EAM 9.6394 ships with default administrative credentials that are also displayed within the management client’s connection dialog. If the administrator does not change these defaults, a remote attacker can authenticate to the EAM server and gain full control over monitored agents and data. This enables reading highly sensitive telemetry (including keylogger output) and issuing arbitrary actions to all connected clients.
References (3)
Core 3
Core References
Vendor Advisory
https://sec-consult.com/vulnerability-lab/advisory/multiple-vulnerabilities-in-imonitorsoft-eam/
Mailing List
http://seclists.org/fulldisclosure/2025/Sep/72
Various Sources third-party-advisory
https://r.sec-consult.com/imonitor
Scores
CVSS v3
9.8
EPSS
0.0066
EPSS Percentile
46.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-1392
Status
published
Products (1)
iMonitor Software Inc./iMonitor EAM
9.63.94
Published
Sep 25, 2025
Tracked Since
Feb 18, 2026