{"id":68761,"date":"2025-08-25T16:31:54","date_gmt":"2025-08-25T13:01:54","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-7426-mnova-tta-ftp-debug-port-authentication-bypass-information-disclosure\/"},"modified":"2025-08-25T16:31:54","modified_gmt":"2025-08-25T13:01:54","slug":"cve-2025-7426-mnova-tta-ftp-debug-port-authentication-bypass-information-disclosure","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-7426-mnova-tta-ftp-debug-port-authentication-bypass-information-disclosure\/","title":{"rendered":"CVE-2025-7426 &#8211; Mnova TTA FTP Debug Port Authentication Bypass Information Disclosure"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-7426<br \/>\n<br \/>\n<strong>Published : <\/strong> Aug. 25, 2025, 9:15 a.m. | 3\u00a0hours, 19\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>Information disclosure and exposure of authentication FTP credentials over the debug port 1604 in the MINOVA TTA service. This allows unauthenticated remote access to an active FTP account containing sensitive internal data and import structures. In environments where this FTP server is part of automated business processes (e.g. EDI or data integration), this could lead to data manipulation, extraction, or abuse.\u00a0 Debug ports\u00a01602,\u00a01603 and\u00a01636 also expose service architecture information and\u00a0system activity logs<br \/>\n<br \/>\n<strong>Severity:<\/strong> 9.3 | CRITICAL<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-7426 Published : Aug. 25, 2025, 9:15 a.m. | 3\u00a0hours, 19\u00a0minutes ago Description : Information disclosure and exposure of authentication FTP credentials over the debug port 1604 in the MINOVA TTA service. This allows unauthenticated remote access to an active FTP account containing sensitive internal data and import structures. In environments where &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-68761","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/68761","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=68761"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/68761\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=68761"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=68761"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=68761"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}