CVE-2025-7202

Vulnerability Description

A Cross-Site Request Forgery (CSRF) in Elgato's Key Lights and related light products allows an attacker to host a malicious webpage that remotely controlles the victim's lights.

Related Weaknesses (CWE)

CWE-352

References

https://www.toreon.com/flashing-your-lights-cve-2025-7202/

FAQ

What is CVE-2025-7202?

CVE-2025-7202 is a documented vulnerability. A Cross-Site Request Forgery (CSRF) in Elgato's Key Lights and related light products allows an attacker to host a malicious webpage that remotely controlles the victim's lights.

How severe is CVE-2025-7202?

CVSS scoring is not yet available for CVE-2025-7202. Check NVD for updates.

Is there a patch for CVE-2025-7202?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.