Unrated severityNVD Advisory· Published Dec 24, 2025· Updated Mar 5, 2026
Teradek VidiU Pro 3.0.3 Cross-Site Request Forgery via Password Change
CVE-2019-25252
Description
Teradek VidiU Pro 3.0.3 contains a cross-site request forgery vulnerability that allows attackers to change administrative passwords without proper request validation. Attackers can craft malicious web pages that automatically submit password change requests to the device when a logged-in administrator visits the page.
Affected products
2- Range: 3.0.3
- Teradek/VidiU Prov5Range: 3.0.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.exploit-db.com/exploits/44671mitreexploit
- www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5460.phpmitrethird-party-advisory
- www.teradek.commitreproduct
News mentions
0No linked articles in our index yet.