CNNVD-202511-2188 Information

CNNVD ID

CNNVD-202511-2188

Related CVE

CVE-2025-13316

• CNNVD Published: 2025-11-19

Description (Chinese)

Lynx Twonky Server是美国Lynx公司的一个DLNA/UPnP媒体服务器。 Lynx Twonky Server 8.5.2版本存在安全漏洞，该漏洞源于使用硬编码加密密钥，可能导致管理员密码被解密。

Description (English)

Lynx Twonky Server is a DLNA/UPnP media server of Lynx, United States. There is a security loophole in version 8.5.2 of Lynx Twonky Server, which arises from the use of a hard-coded encryption key, which may lead to the decryption of the administrator password.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Lynx

Published

2025-11-19

Last Modified

2026-02-24

References

https://www.rapid7.com/blog/post/cve-2025-13315-cve-2025-13316-critical-twonky-server-authentication-bypass-not-fixed/