CVE-2025-41767 | MBS UBR-01 Mk II/UBR-02/UBR-LON prior 6.0.1.0 Web Interface wwwupdate.cgi signature verification (mbs-2025-0001)

Inserito da Angelo Barbosa | Mar 9, 2026 | CVE

A vulnerability was found in MBS UBR-01 Mk II, UBR-02 and UBR-LON. It has been declared as critical. Affected is an unknown function of the file wwwupdate.cgi of the component Web Interface. Executing a manipulation can lead to improper verification of cryptographic signature.

This vulnerability is registered as CVE-2025-41767. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2025-41767 | MBS UBR-01 Mk II/UBR-02/UBR-LON prior 6.0.1.0 Web Interface wwwupdate.cgi signature verification (mbs-2025-0001)

Post correlati

CVE-2025-8503 | code-projects Online Medicine Guide 1.0 /adaddmed.php mname sql injection

CVE-2023-25295 | GRN eVEWA3 Community up to 53 Login Panel cross site scripting

CVE-2024-52364 | IBM Cloud Pak for Business Automation up to 22.0.2 Web UI cross site scripting

CVE-2025-6522 | TrendMakers Sight Bulb Pro Service Port 16668 command injection (icsa-25-177-02)