CVE-2025-8077 — Vulnetix

CVE-2025-8077 PUBLISHED CVSS 9.800000190734863 CRITICAL

NeuVector admin account has insecure default password

EPSS 0.10% · 26.9th percentile

Risk Scores

CVSS 3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.10%

26.9th percentile

Affected Products

Vendor	Product	Versions
github.com	neuvector/neuvector	5.0.0
SUSE	neuvector	5.0.0

Exploit Intelligence

CIRCL seen: CVE-2025-8077 (circl-sighting)
CIRCL seen: CVE-2025-8077 (circl-sighting)
CIRCL seen: CVE-2025-8077 (circl-sighting)
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-8077 (circl)
https://github.com/neuvector/neuvector/security/advisories/GHSA-8pxw-9c75-6w56 (circl)

Timeline

Aug 28, 2025 CVE Published
Sep 1, 2025 PoC Published
Sep 1, 2025 PoC Published
Sep 1, 2025 PoC Published
Sep 17, 2025 CVE Updated
Sep 18, 2025 EPSS Score
Sep 25, 2025 EPSS Score
Oct 2, 2025 EPSS Score
Oct 9, 2025 EPSS Score
Oct 16, 2025 EPSS Score
Oct 23, 2025 EPSS Score
Oct 30, 2025 EPSS Score

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›