PT-2025-47460 · Itel · Itel Iso Fm Sfn Adapter+1
Published
2025-11-19
·
Updated
2025-11-24
·
CVE-2025-63219
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
ITEL ISO FM SFN Adapter versions ISO2 2.0.0.0 and WebServer 2.0
Description
The ITEL ISO FM SFN Adapter is susceptible to session hijacking because of inadequate session management on the
/home.html endpoint. An attacker can gain access to an active session without needing to authenticate, potentially enabling control of the device, modification of configurations, and compromise of system integrity.Recommendations
Apply updates to address the improper session management on the
/home.html endpoint for ITEL ISO FM SFN Adapter version ISO2 2.0.0.0.
Apply updates to address the improper session management on the /home.html endpoint for ITEL ISO FM SFN Adapter version WebServer 2.0.Exploit
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Itel Iso Fm Sfn Adapter
Vwebserver