CVE-2025-6527 – “70mai M300 Web Server Local Network Access Control Vulnerability”

June 23, 2025

CVE ID : CVE-2025-6527

Published : June 23, 2025, 10:15 p.m. | 3 hours, 46 minutes ago

Description : A vulnerability, which was classified as problematic, was found in 70mai M300 up to 20250611. Affected is an unknown function of the component Web Server. The manipulation leads to improper access controls. The attack can only be initiated within the local network. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 3.1 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6529 – “70mai M300 Telnet Service Default Credentials Disclosure”

Next Article CVE-2025-6525 – “70mai 1S Configuration Handler Improper Authorization Vulnerability”

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-6527 – “70mai M300 Web Server Local Network Access Control Vulnerability”

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-54122 – Manager-io/Manager is accounting software. A criti

HPE Aruba Networking Patches Sensitive Data Exposure Vulnerability in Private 5G Core Platform

I tested these new Shokz clip-on earbuds, and they give Bose’s Ultra Open a run for their money

The MedusaLocker ransomware gang is hiring penetration testers

Wardrobe is a GNOME customization tool

Google Chrome Zero-Day CVE-2025-2783 Exploited by TaxOff to Deploy Trinper Backdoor

AdGuard joins the Windows Recall backlash party — “Leaving backdoors wide open and hoping Microsoft will always act in good faith isn’t a solid privacy strategy”

Foundation Model Hidden Representations for Heart Rate Estimation from Auscultation

CVE-2025-6527 – “70mai M300 Web Server Local Network Access Control Vulnerability”

Related Posts