CVE-2025-28381

moderate-risk
Published 2025-06-13

A credential leak in OpenC3 COSMOS before v6.0.2 allows attackers to access service credentials as environment variables stored in all containers.

Do I need to act?

-
0.43% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (2)

Cosmos
Cosmos

Affected Vendors

Openc3

References (5)

https://github.com/OpenC3/cosmos/pull/1816
https://github.com/OpenC3/cosmos/pull/1816/commits/cce64c213fd2e6a70e2ccbf362294...
https://github.com/OpenC3/cosmos/releases/tag/v6.0.2
Product https://openc3.com/
Exploit https://visionspace.com/openc3-cosmos-a-security-assessment-of-an-open-source-mi...
35
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 2/34 · Minimal
Exposure 7/34 · Low