CVE-2025-58152

MEDIUM

FutureNet MA/IP-K - Info Disclosure

Title source: llm

Description

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication.

References (2)

[Various Sources] https://www.centurysys.co.jp/backnumber/common/jvnvu98191201.html

[Third Party Advisory] https://jvn.jp/en/vu/JVNVU98191201/

Scores

CVSS v3 5.3

EPSS 0.0007

EPSS Percentile 20.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-552

Status published

Products (5)

Century Systems Co., Ltd./FutureNet IP-K series from 2.0.0 to 2.2.1

Century Systems Co., Ltd./FutureNet MA-E300 series from 5.0.0 to 6.2.1

Century Systems Co., Ltd./FutureNet MA-P series from 5.0.0 to 6.4.0

Century Systems Co., Ltd./FutureNet MA-S series from 5.0.0 to 6.4.0

Century Systems Co., Ltd./FutureNet MA-X series from 6.0.0 to 6.4.1

Published Oct 31, 2025

Tracked Since Feb 18, 2026