CVE-2025-50454

MEDIUM

Blue Access Cobalt X1 <02.000.187 - Auth Bypass

Title source: llm

Description

An Authentication Bypass vulnerability in Blue Access' Cobalt X1 thru 02.000.187 allows an unauthorized attacker to log into the application as an administrator without valid credentials.

References (2)

Core 2

Core References

Various Sources

https://blueaccesstech.com/collections/software/products/cobalt-x1-software

Various Sources

https://snakemacready.github.io/cve/2025/08/01/CVE-2025-50454.html

Scores

CVSS v3 6.5

EPSS 0.0029

EPSS Percentile 20.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-290

Status published

Published Aug 05, 2025

Tracked Since Feb 18, 2026