Critical severity9.1NVD Advisory· Published Apr 18, 2025· Updated Apr 15, 2026
CVE-2025-28233
CVE-2025-28233
Description
Incorrect access control in BW Broadcast TX600 (14980), TX300 (32990) (31448), TX150, TX1000, TX30, and TX50 Hardware Version: 2, Software Version: 1.6.0, Control Version: 1.0, AIO Firmware Version: 1.7 allows attackers to access log files and extract session identifiers to execute a session hijacking attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: Hardware Version 2, Software Version 1.6.0, Control Version 1.0, AIO Firmware Version 1.7
- Range: Hardware Version 2, Software Version 1.6.0, Control Version 1.0, AIO Firmware Version 1.7
- Range: Hardware Version 2, Software Version 1.6.0, Control Version 1.0, AIO Firmware Version 1.7
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.