Main Vulnerability Database Vulnerabilities #VU113109

#VU113109 Inclusion of Sensitive Information in Log Files in region PAY - CVE-2025-52580

Published: July 22, 2025

Vulnerability identifier: #VU113109

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-52580

CWE-ID: CWE-532

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
region PAY

Software vendor:
Gift Pad

Description

The vulnerability allows a local attacker to gain access to sensitive information.

The vulnerability exists due to software stores sensitive information into log files. An attacker with physical access can read the log files and gain access to sensitive data.

Remediation

Install updates from vendor's website.

External links

https://jvn.jp/en/jp/JVN07825095/index.html

#VU113109 Inclusion of Sensitive Information in Log Files in region PAY - CVE-2025-52580

Description

Remediation

External links

Please verify you're human