CVE•Published 2025-10-23•1 article on news•6 live references•NVD data
CVE-2025-6979
Vulnerability data via CVEDB (Shodan)
CVSS v3.1
8.8
HIGH
EPSS percentile
39
Exploit Prediction Scoring System · top 61% of all CVEs
Description
Captive Portal can allow authentication bypass
Timeline
Published 2025-10-23
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
More intel sources (5)
Shodan report
vuln:CVE-2025-6979Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2025-6979Censys host search filtered to this CVE id.
grep.app
CVE-2025-6979Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2025-6979GitHub code search for direct mentions.
Google dork
"CVE-2025-6979" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub (8)
CVE-2025-69798 repos
demining/CryptoDeepToolsJupyter Notebook
Crypto Deep Tools a set of scripts for detailed cryptanalysis of the Blockchain network in cryptocurrency Bitcoin
demining/Phoenix-Rowhammer-Attack-CVE-2025-6202Jupyter Notebook
Phoenix Rowhammer Attack: Systemic Risk of Bitcoin Wallet Private Key Compromise in Global Blockchain Infrastructure Due to a Critical SK Hynix DDR5 Vulnerability (CVE-2025-6202)
demining/RingSide-Replay-Attackunknown
RingSide Replay Attack: Recovering the SEED → deriving Bitcoin wallet private keys and how 32-bit entropy instead of 256-bit led to the systematic compromise of crypto-asset funds.
demining/Private-key-DebugJupyter Notebook
Private key Debug: Incorrect generation of private keys, system vulnerabilities and errors in calculating the order of the elliptic curve secp256k1 threats to the Bitcoin ecosystem
RUB-NDS/SSH-Client-Signatures-ArtifactsGo
Artifacts for the paper "On the Security of SSH Client Signatures", accepted at the ACM Conference on Computer and Communications Security (CCS) 2025.
demining/Phantom-Signature-Attackunknown
Phantom Signature Attack: An Analysis of the Critical Vulnerability CVE-2025-29774 in the Bitcoin Protocol, SIGHASH_SINGLE Implementation Flaws, and the Mathematical Framework for …
demining/Phantom-Curve-Attackunknown
Phantom Curve Attack: How the Pollard–Kangaroo Algorithm Exposes Private Keys of Lost Bitcoin Wallets via Low-Entropy Nonces under Exponential Degradation of the Secret Key Paramet…
magercode/List-CVE-2025-2026unknown
Daftar CVE 2025-2026 terupdate