Unrated severityNVD Advisory· Published Nov 19, 2025· Updated Nov 19, 2025

CVE-2025-63219

Description

The ITEL ISO FM SFN Adapter (firmware ISO2 2.0.0.0, WebServer 2.0) is vulnerable to session hijacking due to improper session management on the /home.html endpoint. An attacker can access an active session without authentication, allowing them to control the device, modify configurations, and compromise system integrity.

Affected products

ITEL/ISO FM SFN Adapterdescription
ITEL/ISO FM SFN Adapterllm-create
Range: = firmware ISO2 2.0.0.0, WebServer 2.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-63219_ITEL%20ISO%20FM%20SFN%20Adapter%20-%20Session%20Hijackingmitre
www.itel.itmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000