CNNVD-202512-4297 Information

Dec 24, 2025 cve

CNNVD ID

CNNVD-202512-4297

CVE-2018-25134

  • CNNVD Published: 2025-12-24

Description (Chinese)

Synaccess netBooter NP-02x和Synaccess netBooter NP-08x都是美国Synaccess公司的产品。Synaccess netBooter NP-02x是一款智能电源分配单元。Synaccess netBooter NP-08x是一款智能电源控制器。 Synaccess netBooter NP-02x和Synaccess netBooter NP-08x 6.8版本存在安全漏洞,该漏洞源于webNewAcct.cgi脚本缺少控制检查,可能导致身份验证绕过。

Description (English)

Synaaccess netBooter NP-02x and Syna access netBooter NP-08x are all United States company Synacess products. Synaaccess netBouter NP-02x is an intelligent power distribution unit. Synaaccess netBouter NP-08x is an intelligent power controller. There is a security loophole in version 6.8 of Synaaccess netBooter NP-02x and Syna access netBooter NP-08x, which stems from the lack of control checks in webNewAccct.cgi scripts, which may lead to a circumvention of identification.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Synaccess

Published

2025-12-24

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/45920 https://www.synaccess-net.com https://www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5500.php

Share on: