CVE-2025-56009 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Cross site request forgery (CSRF) vulnerability in KeeneticOS before 4.3 at "/rci" API endpoint allows attackers to take over the device via adding additional u…
Medium CVSS: 5.3

CVE-2025-56009

Cross site request forgery (CSRF) vulnerability in KeeneticOS before 4.3 at "/rci" API endpoint allows attackers to take over the device via adding additional users with full permissions by managing the victim to open page with exploit.
Vendor
Keenetic
Product
Keeneticos
CWE
CWE-352
Yayın Tarihi
2025-10-23 15:15:39
Güncelleme
2025-11-04 13:09:44
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-352 Keeneticos MEDIUM Keenetic 2025

Referanslar

https://keenetic.com/ https://keenetic.com/global/security#october-2025-web-api-vulnerabilities