CNNVD-202511-2215 Information

CNNVD ID

CNNVD-202511-2215

Related CVE

CVE-2025-63223

• CNNVD Published: 2025-11-19

Description (Chinese)

Axel StreamerMAX MK II是意大利Axel公司的一款音频编解码设备。 Axel StreamerMAX MK II 0.8.5版本至1.0.3版本存在安全漏洞，该漏洞源于/cgi-bin/gstFcgi.fcgi端点缺少身份验证，可能导致设备完全破解。

Description (English)

Axel StremerMAX MK II is an audio decoded device by the Italian company Axel. There is a security loophole in Axel StreamerMAX MK II versions 0.8.5 to 1.0.3, which stems from the lack of identification of the endpoint/cgi-bin/gstFcgi.fcgi, which may lead to a complete breakdown of the equipment.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Axel

Published

2025-11-19

Last Modified

2026-02-24

References

https://github.com/shiky8/my–cve-vulnerability-research/tree/main/CVE-2025-63223_Axel%20Technology%20StreamerMAX%20MK%20II%20-%20Broken%20Access%20Control https://www.axeltechnology.com/ https://access.redhat.com/security/cve/cve-2025-63223