CVE-2025-10560: CWE-798 Use of Hard-coded Credentials in Silver Leaf Technologies, Inc. Worksnaps.net Worksnaps
Worksnaps client applications prior to version 1.6.20260201 contain hardcoded AWS cloud credentials, including root account access keys and S3 bucket information. These credentials are embedded in the client binaries, allowing an attacker with access to the binaries to extract them and gain unauthorized access to sensitive production cloud resources, such as user desktop screenshots stored in S3 buckets. This vulnerability poses a critical risk due to the high privileges of the exposed credentials and the sensitivity of the data accessible.
AI Analysis
Technical Summary
CVE-2025-10560 is a critical vulnerability in Silver Leaf Technologies, Inc.'s Worksnaps.net Worksnaps client applications before version 1.6.20260201. The client binaries contain hardcoded AWS credentials, including root account access keys and S3 bucket names, which provide direct access to production cloud resources. An attacker who obtains the affected client binaries can extract these credentials and access sensitive data stored in the cloud environment. The vulnerability is classified under CWE-798 (Use of Hard-coded Credentials) and has a CVSS 4.0 score of 9.3, reflecting its critical severity and the ease of exploitation without privileges or user interaction.
Potential Impact
The exposure of AWS root account credentials embedded in client binaries allows attackers to fully access Worksnaps production cloud resources. This includes S3 buckets containing sensitive user data such as desktop screenshots. Unauthorized access to these resources can lead to data breaches, loss of confidentiality, and potential further compromise of cloud infrastructure. The vulnerability requires no privileges or user interaction to exploit, increasing its risk.
Mitigation Recommendations
A patch is available that removes the hardcoded credentials from the client binaries and replaces them with secure authentication mechanisms. Since Worksnaps is a cloud service, the vendor manages remediation for the cloud-hosted components. Users should upgrade to version 1.6.20260201 or later as soon as possible to mitigate this vulnerability. Check the vendor advisory for the latest remediation guidance and confirm patch availability.
CVE-2025-10560: CWE-798 Use of Hard-coded Credentials in Silver Leaf Technologies, Inc. Worksnaps.net Worksnaps
Description
Worksnaps client applications prior to version 1.6.20260201 contain hardcoded AWS cloud credentials, including root account access keys and S3 bucket information. These credentials are embedded in the client binaries, allowing an attacker with access to the binaries to extract them and gain unauthorized access to sensitive production cloud resources, such as user desktop screenshots stored in S3 buckets. This vulnerability poses a critical risk due to the high privileges of the exposed credentials and the sensitivity of the data accessible.
CVSS v4.0
Score 9.3critical
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2025-10560 is a critical vulnerability in Silver Leaf Technologies, Inc.'s Worksnaps.net Worksnaps client applications before version 1.6.20260201. The client binaries contain hardcoded AWS credentials, including root account access keys and S3 bucket names, which provide direct access to production cloud resources. An attacker who obtains the affected client binaries can extract these credentials and access sensitive data stored in the cloud environment. The vulnerability is classified under CWE-798 (Use of Hard-coded Credentials) and has a CVSS 4.0 score of 9.3, reflecting its critical severity and the ease of exploitation without privileges or user interaction.
Potential Impact
The exposure of AWS root account credentials embedded in client binaries allows attackers to fully access Worksnaps production cloud resources. This includes S3 buckets containing sensitive user data such as desktop screenshots. Unauthorized access to these resources can lead to data breaches, loss of confidentiality, and potential further compromise of cloud infrastructure. The vulnerability requires no privileges or user interaction to exploit, increasing its risk.
Mitigation Recommendations
A patch is available that removes the hardcoded credentials from the client binaries and replaces them with secure authentication mechanisms. Since Worksnaps is a cloud service, the vendor manages remediation for the cloud-hosted components. Users should upgrade to version 1.6.20260201 or later as soon as possible to mitigate this vulnerability. Check the vendor advisory for the latest remediation guidance and confirm patch availability.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- SEC-VLab
- Date Reserved
- 2025-09-16T13:21:18.776Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
- Is Cloud Service
- true
Threat ID: 6a33b845f198dc38c17e8a2d
Added to database: 6/18/2026, 9:20:05 AM
Last enriched: 6/18/2026, 9:35:02 AM
Last updated: 6/18/2026, 10:36:19 AM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.