CNNVD-202601-1378 Information
CNNVD ID
CNNVD-202601-1378
Related CVE
- CNNVD Published: 2026-01-08
Description (Chinese)
Leica Geosystems GR10等都是德国徕卡(Leica)公司的一款参考站接收机。 Leica Geosystems多款产品存在跨站请求伪造漏洞,该漏洞源于缺少请求验证,可能导致跨站请求伪造攻击。以下产品受到影响:Leica Geosystems GR10、GR25、GR30和GR50 GNSS
Description (English)
Leica Geosystems GR10 and others are a reference station receiver for the German company Leica. Leica Geosystems has a multiple cross-site request for forgery loophole, which stems from a lack of proof of the request and may lead to cross-site requests for forgery attacks. The following products were affected: Leica Geosystems GR10, GR25, GR30 and GR50 GNSS
Hazard Level
High
Vulnerability Type
跨站请求伪造
Affected Vendor
徕卡
Published
2026-01-08
Last Modified
2026-02-24
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/155275 https://leica-geosystems.com/en-us https://packetstormsecurity.com/files/151040 https://www.exploit-db.com/exploits/46090 https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5502.php
Share on: