CVE-2025-58152

MEDIUM

FutureNet MA/IP-K - Info Disclosure

Title source: llm

Description

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the internal web page. With some crafted HTTP request, they can be accessed without authentication.

References (2)

Core 2

Core References

Various Sources

https://www.centurysys.co.jp/backnumber/common/jvnvu98191201.html

Third Party Advisory

https://jvn.jp/en/vu/JVNVU98191201/

Scores

CVSS v3 5.3

EPSS 0.0027

EPSS Percentile 17.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-552

Status published

Products (5)

Century Systems Co., Ltd./FutureNet IP-K series from 2.0.0 to 2.2.1

Century Systems Co., Ltd./FutureNet MA-E300 series from 5.0.0 to 6.2.1

Century Systems Co., Ltd./FutureNet MA-P series from 5.0.0 to 6.4.0

Century Systems Co., Ltd./FutureNet MA-S series from 5.0.0 to 6.4.0

Century Systems Co., Ltd./FutureNet MA-X series from 6.0.0 to 6.4.1

Published Oct 31, 2025

Tracked Since Feb 18, 2026