CNNVD-202510-790 Information
CNNVD ID
CNNVD-202510-790
Related CVE
- CNNVD Published: 2025-10-06
Description (Chinese)
EndRun Technologies Sonoma D12 Network Time Server是美国EndRun Technologies公司的一款时间同步设备。 EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00版本存在安全漏洞,该漏洞源于容易受到跨站请求伪造攻击,可能导致执行任意代码、拒绝服务、权限提升和信息泄露。
Description (English)
EndRun Technologies Sonoma D12 Network Times Server is a time-synchronized device of the United States company EndRun Technologies. EndRun Technologies Sonoma D12 Network Times Server (GPS) version F/W 6010-007-000 Ver 4.00 contains a security loophole that stems from the vulnerability of cross-site requests for false attacks, which may lead to arbitrary code enforcement, denial of services, promotion of authority and disclosure of information.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
EndRun Technologies
Published
2025-10-06
Last Modified
2026-02-24
References
http://endrun.com http://sonoma.com https://xdiv-sec.github.io/vulnerability-research/advisories/2025-10-03-sonoma-d12
Share on: