CVE-2025-6525 – “70mai 1S Configuration Handler Improper Authorization Vulnerability”

June 23, 2025

CVE ID : CVE-2025-6525

Published : June 23, 2025, 10:15 p.m. | 3 hours, 46 minutes ago

Description : A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This vulnerability affects unknown code of the file /cgi-bin/Config.cgi?action=set of the component Configuration Handler. The manipulation leads to improper authorization. The attack needs to be approached within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6527 – “70mai M300 Web Server Local Network Access Control Vulnerability”

Next Article CVE-2025-6526 – “70mai M300 HTTP Server Local Network Credential Exposure”

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

The coming AI smartphone: Redefining personal tech

Modern React animation libraries: Real examples for engaging UIs

How Debian 13’s little improvements add up to the distro’s surprisingly big leap forward

Why xAI is giving you ‘limited’ free access to Grok 4

How Apple may revamp Siri to a voice assistant I’d actually use (and ditch Gemini for)

I jump-started a bus from the 1930s with this power bank – here’s the verdict

Laravel’s UsePolicy Attribute: Explicit Authorization Control

Laravel’s UsePolicy Attribute: Explicit Authorization Control

The Laravel Way to Build AI Agents That Actually Work

The Laravel Way to Build AI Agents That Actually Work

Microsoft sued over killing support for Windows 10

Microsoft sued over killing support for Windows 10

Grok 4 rolled out for free-tier users worldwide, with some limits

Firefox AI slammed for hogging CPU and draining battery

CVE-2025-6525 – “70mai 1S Configuration Handler Improper Authorization Vulnerability”

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

BadCam Attack Turns Trusted Linux Webcams into Stealthy USB Weapons

Satya Nadella says Microsoft’s AI model performance is “doubling every 6 months”, despite the estranged OpenAI partnership

CVE-2025-4075 – VMSMan Cross Site Scripting Vulnerability

CVE-2025-53315 – Alanft Relocate Upload CSRF Stored XSS

CVE-2025-20182 – Cisco IKEv2 Protocol Denial of Service Vulnerability

Apple fixes zero-click exploit underpinning Paragon spyware attacks

CVE-2023-28910 – Skoda MIB3 Bluetooth Stack Assertion Bypass Vulnerability

Linux CentOS Web Panel Vulnerability Let Attackers Execute Malicious Remote Code – PoC Released

NHS Charter Urges Vendors to Improve Cybersecurity to Prevent Ransomware

CVE-2025-6525 – “70mai 1S Configuration Handler Improper Authorization Vulnerability”

Related Posts