VYPR
Unrated severityNVD Advisory· Published Dec 24, 2025· Updated Mar 5, 2026

Teradek Slice 7.3.15 Cross-Site Request Forgery via Password Change

CVE-2018-25155

Description

Teradek Slice 7.3.15 contains a cross-site request forgery vulnerability that allows attackers to change administrative passwords without proper request validation. Attackers can craft a malicious web page that automatically submits password change requests to the device when a logged-in user visits the page.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Teradek, Llc/Slicellm-create2 versions
    = 7.3.15+ 1 more
    • (no CPE)range: = 7.3.15
    • (no CPE)range: 7.3.15

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.