{"id":38719,"date":"2025-05-16T18:12:47","date_gmt":"2025-05-16T18:12:47","guid":{"rendered":""},"modified":"2025-09-29T02:50:29","modified_gmt":"2025-09-29T08:50:29","slug":"cve-2025-4555-missing-authentication-vulnerability-in-okcat-parking-management-platform","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-4555-missing-authentication-vulnerability-in-okcat-parking-management-platform\/","title":{"rendered":"CVE-2025-4555: Missing Authentication Vulnerability in Okcat Parking Management Platform<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

A critical vulnerability has been discovered in the Okcat Parking Management Platform developed by ZONG YU. This vulnerability, labeled as CVE-2025-4555, has potential to let remote attackers gain unauthenticated access to the system functions. The affected system functions include the ability to open<\/a> gates, view license plates and parking records, and even restart the system. Due to the severity of the potential consequences, which include system compromise and data leakage, it is crucial this vulnerability is addressed<\/a> immediately by all the affected parties.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-4555
\nSeverity: Critical, CVSS score 9.8
\nAttack Vector: Network
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: Unauthenticated remote attackers can access system functions, leading to potential system<\/a> compromise or data leakage.<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n Share secrets securely\r\n <\/h2>\r\n\r\n

\r\n Ameeba is private infrastructure for communication and sensitive work built on encrypted identity instead of exposed corporate identity systems.\r\n <\/p>\r\n\r\n

\r\n Passwords, credentials, confidential files, screenshots, internal discussions, sensitive AI context, and private coordination should not become exposed across ordinary communication platforms.\r\n <\/p>\r\n\r\n