CNNVD-202512-4808 Information

Dec 26, 2025 cve

CNNVD ID

CNNVD-202512-4808

CVE-2025-67015

  • CNNVD Published: 2025-12-26

Description (Chinese)

Comtech EF Data CDM-625是Comtech EF Data公司的一款卫星调制解调器。 Comtech EF Data CDM-625 v2.5.1版本存在安全漏洞,该漏洞源于访问控制不当,可能导致攻击者通过特制POST请求更改管理员密码并提升权限。

Description (English)

Comtech EF Data CDM-625 is a satellite modem of Comtech EF Data. There is a security loophole in version EF Data CDM-625 v2.5.1, which stems from inadequate access controls, which may lead the attackers to request changes to the administrator password and upgrade the privileges through a specially designed POST.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Comtech EF Data

Published

2025-12-26

Last Modified

2026-02-24

References

https://github.com/shiky8/my–cve-vulnerability-research/tree/main/CVE-2025-67015%20_%20Comtech%20EF%20Data%20CDM-625%20_%20CDM-625A%20Advanced%20_%20Broken%20Access%20Control https://www.comtechefdata.com/ https://access.redhat.com/security/cve/cve-2025-67015

Share on: