CNNVD-202512-3248 Information

CNNVD ID

CNNVD-202512-3248

Related CVE

CVE-2025-66953

• CNNVD Published: 2025-12-17

Description (Chinese)

Narda-MITEQ Uplink Power Control Unit是美国Narda-MITEQ公司的一款卫星通信地面站设备。 Narda-MITEQ Uplink Power Control Unit UPC2 1.17版本存在安全漏洞，该漏洞源于Web管理接口存在跨站请求伪造，可能导致执行任意代码。

Description (English)

Narda-MITEQ Uplink Power Control Unit is a satellite communications ground station equipment of the United States company Narda-MITEQ. There is a security loophole in version 1.17 of Narda-Mitek Power Portrol Unit UPC2 from the existence of a cross-site request for forgery of the Web management interface, which may result in the execution of any code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Narda-MITEQ

Published

2025-12-17

Last Modified

2026-02-24

References

https://github.com/shiky8/my–cve-vulnerability-research/tree/main/CVE-2025-66953%20_%20narda%20miteq%20Uplink%20Power%20Contril%20Unitl%20UPC2%20_%20CSRF https://www.nardamiteq.com/ https://access.redhat.com/security/cve/cve-2025-66953