CVE-2025-13819 Open redirect in web server of MiR robots and MiR fleet

🗓️ 01 Dec 2025 09:41:08Reported by TROType

Open redirect in Mir Robot and Fleet web server enables redirects via crafted parameter.

Reporter	Title	Published	Views	Family All 7
CNNVD	Mobile Industrial Robots Robots和Mobile Industrial Robots Fleet 安全漏洞	1 Dec 202500:00	–	cnnvd
CVE	CVE-2025-13819	1 Dec 202509:41	–	cve
EUVD	EUVD-2025-199977	1 Dec 202509:41	–	euvd
NVD	CVE-2025-13819	1 Dec 202510:15	–	nvd
Positive Technologies	PT-2025-48431	1 Dec 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-13819	11 Dec 202509:58	–	redhatcve
Vulnrichment	CVE-2025-13819 Open redirect in web server of MiR robots and MiR fleet	1 Dec 202509:41	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Robot",
    "vendor": "MiR",
    "versions": [
      {
        "lessThan": "3.7.0",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Fleet",
    "vendor": "MiR",
    "versions": [
      {
        "lessThan": "3.7.0",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
mobile-industrial-robots	www.mobile-industrial-robots.com/security-advisories/cve-2025-13819-open-redirect
supportportal	www.supportportal.mobile-industrial-robots.com/documentation/mir-cybersecurity-guide/mir-cybersecurity-guide/

01 Dec 2025 09:41Current

CVSS 3.16.1

EPSS0.00195

CWE-601