483 matches found
CVE-2025-12515 Systemic Internal Server Errors - HTTP 500 Response
Systemic Internal Server Errors - HTTP 500 ResponseThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12515
CVE-2025-12515 affects Azure Access Technology BLU-IC2 and BLU-IC4 (firmware through 1.19.5). The issue is a systemic internal server error that can yield HTTP 500 responses. This is a networked vulnerability stemming from an internal server condition, leading to a total impact on availability an...
Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4 安全漏洞
The Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 are both networked access controllers from Azure Access Technology, USA. A security vulnerability exists in the Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 that stems from a firmware version mismatch. ...
PT-2025-44416
Name of the Vulnerable Software and Affected Versions BLU-IC2 versions through 1.19.5 BLU-IC4 versions through 1.19.5 Description The software exhibits a lack of graceful error handling, resulting in HTTP 5xx errors. Recommendations For BLU-IC2 versions through 1.19.5, implement robust error...
PT-2025-44423
Name of the Vulnerable Software and Affected Versions BLU-IC2 versions through 1.19.5 BLU-IC4 versions through 1.19.5 Description The credits page displayed in the firmware does not accurately reflect the versions in use. Recommendations For BLU-IC2 versions through 1.19.5, ensure the firmware...
Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4 安全漏洞
The Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 are both networked access controllers from Azure Access Technology, USA. A denial of service vulnerability exists in Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4, which originates from an internal syste...
CVE-2025-12425
Local Privilege Escalation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12423
Protocol manipulation might lead to denial of service.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12424
Privilege Escalation through SUID-bit Binary.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
EUVD-2025-36680
Server Version Disclosure.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12479
Systemic Lack of Cross-Site Request Forgery CSRF Token Implementation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12479
Systemic Lack of Cross-Site Request Forgery CSRF Token Implementation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12478
Non-Compliant TLS Configuration.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12476
Resource Lacking AuthN.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12478
Non-Compliant TLS Configuration.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12476
Resource Lacking AuthN.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12477
Server Version Disclosure.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12479
CVE-2025-12479 describes a systemic lack of CSRF protection in Azure Access Technology BLU-IC2 and BLU-IC4, with affected versions up to 1.19.5. The LOCs across sources (including PT-2025-44318 and related Red Hat/CNVD entries) confirm a CSRF token implementation gap that could enable unauthorize...
CVE-2025-12479 Systemic Lack of Cross-Site Request Forgery (CSRF) Token Implementation
Systemic Lack of Cross-Site Request Forgery CSRF Token Implementation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
CVE-2025-12479 Systemic Lack of Cross-Site Request Forgery (CSRF) Token Implementation
Systemic Lack of Cross-Site Request Forgery CSRF Token Implementation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...