Skip to main content
Radar
DashboardThreatsMapFeedsAPI
reconnecting

CVE-2025-53757: CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in Digisol XPON ONU Wi-Fi Router (DG-GR6821AC)

High
VulnerabilityCVE-2025-53757cvecve-2025-53757cwe-614cwe-1004
Published: Wed Jul 16 2025 (07/16/2025, 11:25:05 UTC)
Source: CVE Database V5
Vendor/Project: Digisol
Product: XPON ONU Wi-Fi Router (DG-GR6821AC)

Description

This vulnerability exists in Digisol DG-GR6821AC Router due to misconfiguration of both Secure and HttpOnly flags on session cookies associated with the router web interface. A remote attacker could exploit this vulnerability by capturing the session cookies transmitted over an unsecure HTTP connection. Successful exploitation of this vulnerability could allow the attacker to obtain sensitive information from the targeted device.

Technical Details

Data Version
5.1
Assigner Short Name
CERT-In
Date Reserved
2025-07-09T11:17:31.820Z
Cvss Version
4.0
State
PUBLISHED

Threat ID: 6877910aa83201eaacda58f5

Added to database: 7/16/2025, 11:46:18 AM

Last updated: 7/16/2025, 11:46:18 AM

Views: 1

Related Threats

CVE-2025-53758: CWE-312: Cleartext Storage of Sensitive Information in Digisol XPON ONU Wi-Fi Router (DG-GR6821AC)

Medium
VulnerabilityWed Jul 16 2025

CVE-2025-52836: CWE-266 Incorrect Privilege Assignment in Unity Business Technology Pty Ltd The E-Commerce ERP

Critical
VulnerabilityWed Jul 16 2025

CVE-2025-52819: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in pakkemx Pakke Envíos

High
VulnerabilityWed Jul 16 2025

CVE-2025-52804: CWE-862 Missing Authorization in uxper Nuss

High
VulnerabilityWed Jul 16 2025

CVE-2025-52803: CWE-862 Missing Authorization in uxper Sala

High
VulnerabilityWed Jul 16 2025

Actions

Please log in to the Console to use AI analysis features.

Need enhanced features?

Contact root@offseq.com for Pro access with improved analysis and higher rate limits.

Latest Threats