CVE-2019-25252
- EPSS 0.01%
- Veröffentlicht 24.12.2025 19:28:04
- Zuletzt bearbeitet 26.01.2026 16:15:54
Teradek VidiU Pro 3.0.3 contains a cross-site request forgery vulnerability that allows attackers to change administrative passwords without proper request validation. Attackers can craft malicious web pages that automatically submit password change ...
CVE-2019-25251
- EPSS 0.02%
- Veröffentlicht 24.12.2025 19:28:03
- Zuletzt bearbeitet 26.01.2026 16:15:54
Teradek VidiU Pro 3.0.3 contains a server-side request forgery vulnerability in the management interface that allows attackers to manipulate GET parameters 'url' and 'xml_url'. Attackers can exploit this flaw to bypass firewalls, initiate network enu...
CVE-2021-37375
- EPSS 0.18%
- Veröffentlicht 03.02.2023 18:15:12
- Zuletzt bearbeitet 21.11.2024 06:15:02
Cross Site Scripting (XSS) vulnerability in Teradek VidiU / VidiU Mini firmware version 3.0.8 and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has rea...