CVE-2025-6527 | 70mai M300 up to 20250611 Web Server access control

Inserito da Angelo Barbosa | Giu 23, 2025 | CVE

A vulnerability, which was classified as problematic, was found in 70mai M300 up to 20250611. Affected is an unknown function of the component Web Server. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2025-6527. The attack can only be initiated within the local network. Furthermore, there is an exploit available.

It is recommended to apply restrictive firewalling.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-6527 | 70mai M300 up to 20250611 Web Server access control

Post correlati

CVE-2024-6438 | Hitout Carsale 1.0 OrderController.java orderBy sql injection (Issue 23)

CVE-2024-8386 | Mozilla Firefox up to 129.x Popup Window ui layer

CVE-2024-48883 | Samsung 9825 information disclosure

CVE-2024-9659 | School Management Plugin up to 91.5.0 on WordPress unrestricted upload