CNNVD-202509-2181 Information
Sep 15, 2025
cve
CNNVD ID
CNNVD-202509-2181
Related CVE
- CNNVD Published: 2025-09-15
Description (Chinese)
AVTECH EagleEyes是中国台湾陞泰科技(AVTECH)公司的一款远程即时监控移动应用。 AVTECH EagleEyes 2.0.0版本存在安全漏洞,该漏洞源于设置ALLOW_ALL_HOSTNAME_VERIFIER绕过域名验证,可能导致中间人攻击。
Description (English)
AVTECCH EagleEyes is a long-range, instant mobile monitoring application for the company AVTECCH of Taiwan, China. There is a security gap in version 2.0.0 of AVTECH EagleEyes, which stems from the setting-up of ALLOW ALL HOSTNAME VERIFIEER bypassing domain name authentication, which may lead to an attack by an intermediary.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Avtech Software
Published
2025-09-15
Last Modified
2026-02-24
References
https://github.com/shinyColumn/CVE-2025-46408 https://access.redhat.com/security/cve/cve-2025-46408
Share on: