CVE-2025-13510

The Iskra iHUB and iHUB Lite smart metering gateway exposes its web management interface without requiring authentication, allowing unauthenticated users to access and modify critical device settings...

CVE-2025-13510

The Iskra iHUB and iHUB Lite smart metering gateway exposes its web management interface without requiring authentication, allowing unauthenticated users to access and modify critical device settings...

CVE-2025-13510

CVE-2025-13510 (Iskra iHUB / iHUB Lite) is a real vulnerability where the web management interface is exposed without authentication, allowing unauthenticated access to modify critical device settings. Affected product family: Iskra iHUB and iHUB Lite smart metering gateways. Root cause: missing ...

CVE-2025-13510 Iskra iHUB and iHUB Lite has a Missing Authentication for Critical Function vulnerabilitiy

The Iskra iHUB and iHUB Lite smart metering gateway exposes its web management interface without requiring authentication, allowing unauthenticated users to access and modify critical device settings...

CVE-2025-13510 Iskra iHUB and iHUB Lite has a Missing Authentication for Critical Function vulnerabilitiy

The Iskra iHUB and iHUB Lite smart metering gateway exposes its web management interface without requiring authentication, allowing unauthenticated users to access and modify critical device settings...

Iskra iHUB and iHUB Lite

RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to reconfigure devices, update firmware, and manipulate connected systems without any credentials. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

Iskra iHUB和Iskra iHUB Lite 访问控制错误漏洞

Both Iskra iHUB and Iskra iHUB Lite are a smart metering gateway from Iskra, Slovenia. An access control error vulnerability exists in the Iskra iHUB and Iskra iHUB Lite that originates from an unauthenticated web management interface and could lead to unauthorized access and modification...