cvedb.io
CVE-2025-65185
LOW · CVSS 2.8
EPSS exploitation probability: 0%
Published 2025-12-17T17:15:50.537 · Last modified 2026-06-17T09:55:30.657

Summary

There is a username enumeration via local user login in Entrinsik Informer v5.10.1 which allows malicious users to enumerate users by entering an OTP code and new password then reviewing application responses.

Affected products

entrinsik — informer

Does this affect you?

Add your gear to cvedb and we'll alert you only when entrinsik ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.