CVE-2025-0224 Information

Jan 06, 2025 cve

Description

A vulnerability was found in Provision-ISR SH-4050A-2 SH-4100A-2L(MM) SH-8100A-2L(MM) SH-16200A-2(1U) SH-16200A-5(1U) and NVR5-8200PX up to 20241220. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /server.js. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Reference

https://netsecfish.notion.site/Sensitive-Device-Information-Disclosure-in-Provision-ISR-DVR-1626b683e67c803881befbc730a93bf6?pvs=4 https://vuldb.com/?ctiid.290203 https://vuldb.com/?id.290203 https://vuldb.com/?submit.467085

Share on: