VYPR
Unrated severityNVD Advisory· Published Nov 18, 2025· Updated Nov 19, 2025

CVE-2025-63225

CVE-2025-63225

Description

The Eurolab ELTS100_UBX device (firmware version ELTS100v1.UBX) is vulnerable to Broken Access Control due to missing authentication on critical administrative endpoints. Attackers can directly access and modify sensitive system and network configurations, upload firmware, and execute unauthorized actions without any form of authentication. This vulnerability allows remote attackers to fully compromise the device, control its functionality, and disrupt its operation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Eurolab/ELTS100_UBXcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: == firmware version ELTS100v1.UBX

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.