Vulnerability Description
An issue was discovered in NJHYST HY511 POE core before 2.1 and plugins before 0.1. The vulnerability stems from the device's insufficient cookie verification, allowing an attacker to directly request the configuration file address and download the core configuration file without logging into the device management backend. By reading the corresponding username and self-decrypted MD5 password in the core configuration file, the attacker can directly log in to the backend, thereby bypassing the front-end backend login page.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Njhyst | Hy511 Firmware | < 2.1 |
| Njhyst | Hy511 | - |
Related Weaknesses (CWE)
References
- https://gist.github.com/a2148001284/bcdda75fc8718454f16a7b9259463719Third Party Advisory
- https://github.com/a2148001284/test1/blob/main/%E6%9C%AA%E6%8E%88%E6%9D%83%E8%AEExploitThird Party Advisory
FAQ
What is CVE-2025-65212?
CVE-2025-65212 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered in NJHYST HY511 POE core before 2.1 and plugins before 0.1. The vulnerability stems from the device's insufficient cookie verification, allowing an attacker to directly request...
How severe is CVE-2025-65212?
CVE-2025-65212 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-65212?
Check the references section above for vendor advisories and patch information. Affected products include: Njhyst Hy511 Firmware, Njhyst Hy511.