CVE-2019-25259

Name of the Vulnerable Software and Affected Versions Leica Geosystems GR10/GR25/GR30/GR50 GNSS version 4.30.063

Description The software contains a cross-site request forgery issue that could allow attackers to perform administrative actions without proper validation of requests. Attackers can potentially trick authenticated users into unintentionally executing unauthorized actions through malicious web pages that submit requests to the application.

Recommendations Update to a newer version that contains a fix for this vulnerability.