CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

NVD•added 2025/12/24 8:15 p.m.•1 views

CVE-2019-25252

Teradek VidiU Pro 3.0.3 contains a cross-site request forgery vulnerability that allows attackers to change administrative passwords without proper request validation. Attackers can craft malicious web pages that automatically submit password change requests to the device when a logged-in...

5.1CVSS0.00007EPSS

Exploits2References3

OSV•added 2025/12/24 8:15 p.m.•1 views

CVE-2019-25251

Teradek VidiU Pro 3.0.3 contains a server-side request forgery vulnerability in the management interface that allows attackers to manipulate GET parameters 'url' and 'xmlurl'. Attackers can exploit this flaw to bypass firewalls, initiate network enumeration, and potentially trigger external HTTP...

6.5CVSS5.9AI score0.00017EPSS

Exploits2References3

NVD•added 2025/12/24 8:15 p.m.•2 views

CVE-2019-25251

6.9CVSS0.00017EPSS

Exploits2References3

OSV•added 2025/12/24 8:15 p.m.•2 views

CVE-2019-25252

4.3CVSS5.7AI score0.00007EPSS

Exploits2References3

CVE•added 2025/12/24 7:28 p.m.•7 views

CVE-2019-25252

CVE-2019-25252 affects Teradek VidiU Pro 3.0.3 with a cross-site request forgery that allows changing administrative passwords when a logged-in administrator visits a malicious page. The issue arises from insufficient request validation, enabling an attacker-controlled page to submit password-cha...

5.1CVSS6.6AI score0.00007EPSS

Exploits2References3Affected Software1

Vulnrichment•added 2025/12/24 7:28 p.m.•1 views

CVE-2019-25252 Teradek VidiU Pro 3.0.3 Cross-Site Request Forgery via Password Change

5.1CVSS6.6AI score0.00007EPSS

Exploits2References3

Cvelist•added 2025/12/24 7:28 p.m.•25 views

CVE-2019-25252 Teradek VidiU Pro 3.0.3 Cross-Site Request Forgery via Password Change

5.1CVSS0.00007EPSS

Exploits2References3

Cvelist•added 2025/12/24 7:28 p.m.•25 views

CVE-2019-25251 Teradek VidiU Pro 3.0.3 Server-Side Request Forgery via RTMP Settings

6.9CVSS0.00017EPSS

Exploits2References3

Vulnrichment•added 2025/12/24 7:28 p.m.•1 views

CVE-2019-25251 Teradek VidiU Pro 3.0.3 Server-Side Request Forgery via RTMP Settings

6.9CVSS6.7AI score0.00017EPSS

Exploits2References3

CVE•added 2025/12/24 7:28 p.m.•12 views

CVE-2019-25251

CVE-2019-25251 affects Teradek VidiU Pro 3.0.3. The vulnerability is a server-side request forgery in the management interface that allows manipulation of the GET parameters url and xml_url, enabling attackers to bypass firewalls, perform network enumeration, and potentially trigger external HTTP...

6.9CVSS6.7AI score0.00017EPSS

Exploits2References3Affected Software1

Positive Technologies•added 2025/12/24 12:0 a.m.•2 views

PT-2025-53337

Name of the Vulnerable Software and Affected Versions Teradek VidiU Pro version 3.0.3 Description The software contains a server-side request forgery issue in the management interface. Attackers can manipulate GET parameters url and xml url to bypass firewalls, perform network enumeration, and...

6.9CVSS6.7AI score0.00017EPSS

Exploits2References5

Positive Technologies•added 2025/12/24 12:0 a.m.•2 views

PT-2025-53338

Name of the Vulnerable Software and Affected Versions Teradek VidiU Pro version 3.0.3 Description The Teradek VidiU Pro software contains a cross-site request forgery issue. This allows attackers to alter administrative passwords due to insufficient validation of requests. An attacker can create...

5.3CVSS6.7AI score0.00007EPSS

Exploits2References5

CNNVD•added 2025/12/24 12:0 a.m.•0 views

Teradek VidiU Pro 安全漏洞

Teradek VidiU Pro is a hardware live encoder from Teradek USA. A security vulnerability exists in Teradek VidiU Pro version 3.0.3 that stems from a lack of proper request validation and could lead to a cross-site request forgery attack...

5.1CVSS6.6AI score0.00007EPSS

Exploits2References3

CNNVD•added 2025/12/24 12:0 a.m.•2 views

Teradek VidiU Pro 安全漏洞

Teradek VidiU Pro is a hardware live streaming encoder from Teradek USA. A security vulnerability exists in Teradek VidiU Pro version 3.0.3, which stems from the mishandling of the url and xmlurl parameters by the management interface, which could lead to a server-side request forgery attack...

6.9CVSS6.7AI score0.00017EPSS

Exploits2References3

CNVD•added 2018/06/15 12:0 a.m.•1 views

Teradek VidiU Pro Cross-Site Request Forgery Vulnerability

The Teradek VidiU is the world's first miniature HDMI H.264 encoder built specifically for consumers, with a host of connectivity options included, as well as support for the most popular video streaming platforms. A cross-site request forgery vulnerability exists in multiple versions of Teradek...

6.8AI score

Exploits0References1

Zero Science Lab•added 2018/05/21 12:0 a.m.•601 views

Teradek VidiU Pro 3.0.3 CSRF Change Password Exploit

Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...

5.1CVSS5.8AI score0.00007EPSS

Exploits2

Exploit DB•added 2018/05/21 12:0 a.m.•25 views

Teradek VidiU Pro 3.0.3 - Cross-Site Request Forgery

input type="hidden" name="pw2" value="P@ss...

7.4AI score

Exploits0

Exploit DB•added 2018/05/21 12:0 a.m.•37 views

Teradek VidiU Pro 3.0.3 - Server-Side Request Forgery

Teradek VidiU Pro 3.0.3 SSRF Vulnerability Vendor: Teradek, LLC Product web page: https://www.teradek.com Affected version: VidiU, VidiU Mini, VidiU Pro 3.0.3r32136 3.0.2r31225 2.4.10 Summary: The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web...

7AI score

Exploits0