CNNVD-202511-2159 Information

CNNVD ID

CNNVD-202511-2159

Related CVE

CVE-2025-63212

• CNNVD Published: 2025-11-19

Description (Chinese)

GatesAir Flexiva-LX Series是美国GatesAir公司的一系列固态FM发射器。 GatesAir Flexiva-LX Series 1.0.13版本和2.0版本存在安全漏洞，该漏洞源于公开可访问的日志文件暴露敏感会话标识符，可能导致会话劫持。

Description (English)

The Gates Air Flexiva-LX Series is a series of solid FM launchers of the United States company Gatesair. There is a security loophole in versions 1.0.13 and 2.0 of Gates Air Flexiva-LX Series, which stems from the exposure of sensitive session identifiers to publicly accessible log files, which may lead to the hijacking of sessions.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GatesAIr

Published

2025-11-19

Last Modified

2026-02-24

References

https://github.com/shiky8/my–cve-vulnerability-research/tree/main/CVE-2025-63212%20_GatesAir%20Flexiva-LX%20Series%20_%20Session%20Hijacking https://www.gatesair.com/ https://access.redhat.com/security/cve/cve-2025-63212