Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/03/19 12:28 a.m.15 views

CVE-2025-25684

A lack of validation in the path parameter /download of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files from the device's file system via a crafted POST request...

7.5CVSS7AI score0.00472EPSS
Exploits0References1
Circl
Circl
added 2025/03/17 7:8 p.m.5 views

CVE-2025-25684

creationtimestamp| type| source ---|---|--- 2025-03-17 19:08:45+00:00| seen| https://t.me/cvedetector/20493 2025-03-19 20:18:18+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8147...

7.5CVSS4.8AI score0.00472EPSS
Exploits0References2
NVD
NVD
added 2025/03/17 5:15 p.m.13 views

CVE-2025-25684

A lack of validation in the path parameter /download of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files from the device's file system via a crafted POST request...

7.5CVSS0.00472EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/17 12:0 a.m.8 views

CVE-2025-25684

A lack of validation in the path parameter /download of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files from the device's file system via a crafted POST request...

6.5AI score0.00472EPSS
Exploits0References1
CVE
CVE
added 2025/03/17 12:0 a.m.60 views

CVE-2025-25684

CVE-2025-25684 affects GL.iNet Beryl AX GL-MT3000 (v4.7.0). A lack of validation in the /download path permits arbitrary file download from the device via a crafted POST request. Public references in the dataset confirm the vulnerability class as a path-traversal-like flaw enabling access to the ...

7.5CVSS6.9AI score0.00472EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/17 12:0 a.m.16 views

CVE-2025-25684

A lack of validation in the path parameter /download of GL-INet Beryl AX GL-MT3000 v4.7.0 allows attackers to download arbitrary files from the device's file system via a crafted POST request...

0.00472EPSS
Exploits0References1
Rows per page
Query Builder