CNNVD-202601-1014 Information

CNNVD ID

CNNVD-202601-1014

Related CVE

CVE-2025-65212

• CNNVD Published: 2026-01-06

Description (Chinese)

Nanjing Hanyuan HY511 POE是中国Nanjing Hanyuan公司的一款嵌入式智能显示面板。 Nanjing Hanyuan HY511 POE 2.1之前版本和plugins 0.1之前版本存在安全漏洞，该漏洞源于设备Cookie验证不足，可能导致攻击者下载核心配置文件并绕过前端后台登录页面。

Description (English)

Nanjing Hanyuan HY 511 POE is an embedded smart panel of the Chinese company Nanjing Hanyuan. There was a security loophole in the previous version of Nanjing Hanyuan HY 511 POE 2.1 and in the previous version of Plugins 0.1, which stemmed from inadequate verification of the device Cookie, which could result in the assailant downloading the core profile and bypassing the front-end back-office login page.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Nanjing Hanyuan

Published

2026-01-06

Last Modified

2026-02-24

References

https://github.com/a2148001284/test1/blob/main/%E6%9C%AA%E6%8E%88%E6%9D%83%E8%AE%BF%E9%97%AE%E5%90%8E%E5%8F%B0%E6%BC%8F%E6%B4%9EEN.md https://gist.github.com/a2148001284/bcdda75fc8718454f16a7b9259463719 https://access.redhat.com/security/cve/cve-2025-65212

Patch

http://njhyst.com/