CNNVD-202509-2019 Information
Sep 15, 2025
cve
CNNVD ID
CNNVD-202509-2019
Related CVE
- CNNVD Published: 2025-09-15
Description (Chinese)
Ceragon EtherHaul series是美国Ceragon公司的一款点对点无限链路设备。 Ceragon EtherHaul series 7.4.0版本至10.7.3版本存在安全漏洞,该漏洞源于rfpiped服务未执行身份验证或路径验证,可能导致未经验证的文件上传。
Description (English)
Ceragon EtherHaul services are a point-to-point interlocking device of the United States company Ceragon. There is a security loophole in Ceragon EtherHaul series, versions 7.4.0 to 10.7.3, which stems from the fact that the rifpid service did not perform authentication or routing, which could lead to the uploading of unverified documents.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Ceragon
Published
2025-09-15
Last Modified
2026-02-24
References
http://ceragon.com http://etherhaul.com https://www.exploit-db.com/exploits/52467 https://access.redhat.com/security/cve/cve-2025-57176
Share on: