CNNVD-202510-1122 Information

CNNVD ID

CNNVD-202510-1122

Related CVE

CVE-2025-57457

• CNNVD Published: 2025-10-08

Description (Chinese)

Curo UC300是英国Curo公司的一款视频电话设备。 Curo UC300 5.42.1.7.1.63R1版本存在安全漏洞，该漏洞源于IP Addr参数未经验证，可能导致OS命令注入攻击。

Description (English)

Curo UC300 is a video telephone equipment of the British company Curo. Curo UC 300 5.42.1.7.1.63R1 has a security loophole, which originates from unverified IP Addr parameters, which may lead to an OS order being injected into the attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Curo

Published

2025-10-08

Last Modified

2026-02-24

References

http://curo.com https://github.com/restdone/CVE-2025-57457/tree/main https://access.redhat.com/security/cve/cve-2025-57457