CVE-2025-63214

An issue was discovered in bridgetech VBC Server & Element Manager, firmware version 6.5.0-10 , 6.5.0-9, allowing unauthorized attackers to delete and create arbitrary accounts...

CVE-2025-63214

The CVE-2025-63214 affects bridgetech VBC Server & Element Manager, firmware 6.5.0-9 and 6.5.0-10, allowing unauthorized attackers to delete and create arbitrary accounts. Public sources (PT-2025-47526) recommend updating to a version newer than 6.5.0-10. Risk/exploitation details are not specifi...

PT-2025-47526

Name of the Vulnerable Software and Affected Versions bridgetech VBC Server & Element Manager versions 6.5.0-9 through 6.5.0-10 Description An issue exists in bridgetech VBC Server & Element Manager that allows unauthorized attackers to create and delete arbitrary accounts. Recommendations Update...

CVE-2025-63208

Summary: CVE-2025-63208 affects Bridgetech VB288 Objective QoE Content Extractor (firmware 5.6.0-8). A flaw in the /probe/core/setup/passwd endpoint allows an attacker to disclose admin passwords, exposing highly sensitive data (confidentiality impact H; CVSS 3.1: HIGH, Network attack vector, no ...

Bridgetech VBC Server & Element Manager 安全漏洞

Bridgetech VBC Server & Element Manager is a broadcast core software platform from Bridgetech Norway. A security vulnerability exists in Bridgetech VBC Server & Element Manager versions 6.5.0-9 through 6.5.0-10, which originates from a stored cross-site script in the addName parameter of the...

Bridgetech VB288 Objective QoE Content Extractor 安全漏洞

Bridgetech VB288 Objective QoE Content Extractor is a content-level active monitoring platform from Bridgetech, Norway. A security vulnerability exists in Bridgetech VB288 Objective QoE Content Extractor version 5.6.0-8, which originates in the /probe/core/setup/passwd endpoint that could disclos...

PT-2025-47492

Name of the Vulnerable Software and Affected Versions bridgetech probes VB220 IP Network Probe, VB120 Embedded IP + RF Probe, VB330 High-Capacity Probe, VB440 ST 2110 Production Analytics Probe, and NOMAD versions 6.5.0-9 Description An issue exists that allows attackers to gain sensitive...

CVE-2025-63205

Bridgetech probes and NOMAD (VB220, VB120, VB330, VB440) firmware versions 6.5.0-9 have a reported information-disclosure flaw exposed via the /probe/core/setup/passwd endpoint that can reveal administrator passwords. Multiple sources corroborate the affected product set and version, but the supp...

CVE-2025-63211

CVE-2025-63211 affects Bridgetech VBC Server & Element Manager. A stored cross-site scripting flaw exists in firmware versions 6.5.0-9 through 6.5.0-10, exploitable via the addName parameter on the /vbc/core/userSetupDoc/userSetupDoc endpoint, potentially enabling arbitrary code execution. Connec...

CVE-2025-63211

Stored cross-site scripting vulnerability in bridgetech VBC Server & Element Manager, firmware versions 6.5.0-9 thru 6.5.0-10, allows attackers to execute arbitrary code via the addName parameter to the /vbc/core/userSetupDoc/userSetupDoc endpoint...