CVE-2025-6525: Improper Authorization in 70mai 1S
A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This vulnerability affects unknown code of the file /cgi-bin/Config.cgi?action=set of the component Configuration Handler. The manipulation leads to improper authorization. The attack needs to be approached within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2025-6525: Improper Authorization in 70mai 1S
Description
A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This vulnerability affects unknown code of the file /cgi-bin/Config.cgi?action=set of the component Configuration Handler. The manipulation leads to improper authorization. The attack needs to be approached within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-06-23T14:11:15.250Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 6859c9a8dec26fc862d89b1b
Added to database: 6/23/2025, 9:39:52 PM
Last updated: 6/23/2025, 9:39:52 PM
Views: 1
Related Threats
CVE-2025-6524: Improper Authentication in 70mai 1S
LowCVE-2025-52561: CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in JuliaComputing HTMLSanitizer.jl
MediumCVE-2025-2828: CWE-918 Server-Side Request Forgery (SSRF) in langchain-ai langchain-ai/langchain
HighCVE-2025-23092: n/a
HighCVE-2025-52562: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in ConvoyPanel panel
CriticalActions
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.